RT# 31964 Fix XSS

[freeside.git] / httemplate / view / prospect_main.html

diff --git a/httemplate/view/prospect_main.html b/httemplate/view/prospect_main.html
index 66abffc..ac56fa7 100644 (file)
--- a/httemplate/view/prospect_main.html
+++ b/httemplate/view/prospect_main.html
@@ -41,8 +41,8 @@
 
 % foreach my $contact ( $prospect_main->contact ) {
     <TR>
-      <TD ALIGN="right"><% $contact->contact_classname %> Contact</TD>
-      <TD BGCOLOR="#FFFFFF"><% $contact->line %></TD>
+      <TD ALIGN="right"><% $contact->contact_classname |h %> Contact</TD>
+      <TD BGCOLOR="#FFFFFF"><% $contact->line |h %></TD>
     </TR>
 %}