From 7df3830c81716b959a2d0d3a0d8216b860ae0dc7 Mon Sep 17 00:00:00 2001
From: plegall <plg@piwigo.org>
Date: Sat, 24 Dec 2016 19:53:49 +0100
Subject: [PATCH] fixes #575, sanitize user input before display on die()

---
 admin/plugin.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/admin/plugin.php b/admin/plugin.php
index 68e0c50d7..16de979a5 100644
--- a/admin/plugin.php
+++ b/admin/plugin.php
@@ -63,6 +63,6 @@ if (is_file($filename))
 }
 else
 {
-  die('Missing file '.$filename);
+  die('Missing file '.htmlentities($filename));
 }
 ?>
\ No newline at end of file