#
# old_revision [692c1de41a5c2badd41715350a31758b35f76bc8]
#
# patch "pf/html/admin/login.php"
#  from [c36c6a4e9cb0f83416cc1678cccb840b43ea7990]
#    to [40ec1cb64f236e4a2b94af990b3af66631ec7d8a]
#
============================================================
--- pf/html/admin/login.php	c36c6a4e9cb0f83416cc1678cccb840b43ea7990
+++ pf/html/admin/login.php	40ec1cb64f236e4a2b94af990b3af66631ec7d8a
@@ -12,7 +12,7 @@ function check_input($input){
     return true; 
   }        
   else{
-    print "Invalid parameter: $input<br>";
+    print "Invalid parameter: ".htmlentities($input)."<br>";
     return false;           
   }
 } 
@@ -247,7 +247,7 @@ else {
     </tr>
     <tr valign=bottom>
       <td align=right>Username</td>
-      <td align=left><input type="text" name="username" maxlength="20" value="<?=(isset($_POST['username']) ? $_POST['username'] : "")?>"></td>
+      <td align=left><input type="text" name="username" maxlength="20" value="<?=(isset($_POST['username']) ? htmlentities($_POST['username']) : "")?>"></td>
     </tr>
     <tr>
       <td align=right>Password</td>