From 6818c2854e02eaf02eae8569e802f090e631b92d Mon Sep 17 00:00:00 2001
From: real_nowhereman <real_nowhereman@aa359531-4221-0410-9edc-b0b45c38dadb>
Date: Sun, 4 Apr 2010 08:37:33 +0000
Subject: [PATCH] fix XSS lastcomments plugin
 http://www.exploit-db.com/exploits/12034

---
 fp-plugins/lastcomments/plugin.lastcomments.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/fp-plugins/lastcomments/plugin.lastcomments.php b/fp-plugins/lastcomments/plugin.lastcomments.php
index e9e2d09..a3b2c87 100644
--- a/fp-plugins/lastcomments/plugin.lastcomments.php
+++ b/fp-plugins/lastcomments/plugin.lastcomments.php
@@ -48,6 +48,8 @@ function plugin_lastcomments_widget() {
 					$update = true;
 				continue;
 			}
+
+			comment_clean($arr);
 			
 			$content .=	
 			"<li>
@@ -183,4 +185,4 @@ function plugin_lastcomments_rssinit() {
 
 */
 
-?>
\ No newline at end of file
+?>