From 26b3b912bf998ec9f35c4ab9210ee914aa136dd6 Mon Sep 17 00:00:00 2001
From: Alexander Ebert <ebert@woltlab.com>
Date: Wed, 9 Oct 2013 14:17:32 +0200
Subject: [PATCH] Fixed XSS vulnerability

---
 com.woltlab.wcf/templates/login.tpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/com.woltlab.wcf/templates/login.tpl b/com.woltlab.wcf/templates/login.tpl
index b24f3aacb7..e52e4336b6 100644
--- a/com.woltlab.wcf/templates/login.tpl
+++ b/com.woltlab.wcf/templates/login.tpl
@@ -150,7 +150,7 @@
 	
 	<div class="formSubmit">
 		<input type="submit" value="{lang}wcf.global.button.submit{/lang}" accesskey="s" />
-		<input type="hidden" name="url" value="{@$url}" />
+		<input type="hidden" name="url" value="{$url}" />
 		{@SECURITY_TOKEN_INPUT_TAG}
 	</div>
 </form>
-- 
2.20.1