From cd85e090f3feb06e6eff65d1499a67353d82d3cb Mon Sep 17 00:00:00 2001 From: Leon Stringer Date: Wed, 14 Feb 2024 15:50:01 +0000 Subject: [PATCH] MDL-80585 report_log: sanitize descriptions Strip any HTML tags from values in the "Description" column. --- report/log/classes/table_log.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/report/log/classes/table_log.php b/report/log/classes/table_log.php index bbd45b4cab4..d9fd538a0c5 100644 --- a/report/log/classes/table_log.php +++ b/report/log/classes/table_log.php @@ -298,7 +298,7 @@ class report_log_table_log extends table_sql { */ public function col_description($event) { // Description. - return $event->get_description(); + return format_text($event->get_description(), FORMAT_PLAIN); } /**