fix 8ff9b85

serendipity_event_contactform/ChangeLog

@@ -9,6 +9,7 @@ fix XSS security vulnerability (Thanks to Stefan Schurtz!)
 latest: Smarty3 forward compatibility
 
 1.14:
+-----
 
 Added check to circument adduser plugin's "registered only" option.
 

serendipity_event_contactform/serendipity_event_contactform.php

@@ -343,7 +343,8 @@ class serendipity_event_contactform extends serendipity_event {
                 htmlspecialchars(strip_tags($serendipity['POST']['name'])),
                 htmlspecialchars(strip_tags($serendipity['POST']['email'])),
                 htmlspecialchars(strip_tags($serendipity['POST']['url'])),
-                htmlspecialchars(strip_tags($comment,true)))) {
+                htmlspecialchars(strip_tags($comment)),
+                true)) {
 
             $serendipity['smarty']->assign('is_contactform_sent', true);
             return true;