From 97d0ca8a0589ccf8e551e1297c130efb71152845 Mon Sep 17 00:00:00 2001
From: Julio Montoya <gugli100@gmail.com>
Date: Mon, 15 Apr 2019 08:40:39 +0200
Subject: [PATCH] Minor - Add security remove_xss

---
 main/forum/viewthread.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main/forum/viewthread.php b/main/forum/viewthread.php
index 167c2f06d6..391d1db5bb 100755
--- a/main/forum/viewthread.php
+++ b/main/forum/viewthread.php
@@ -634,7 +634,7 @@ foreach ($posts as $post) {
         'Aw:',
     ];
     $replace = '<span>'.Display::returnFontAwesomeIcon('mail-reply').'</span>';
-    $post['post_title'] = str_replace($search, $replace, $post['post_title']);
+    $post['post_title'] = str_replace($search, $replace, Security::remove_XSS($post['post_title']));
 
     // The post title
     $titlePost = Display::tag('h3', $post['post_title'], ['class' => 'forum_post_title']);