From 89939682cea2049b1c23591cc9e8acc8059137a5 Mon Sep 17 00:00:00 2001
From: calzoneman <calzoneman@gmail.com>
Date: Tue, 13 May 2014 01:02:38 -0500
Subject: [PATCH] Fix possible XSS issue with chat filters

---
 lib/channel.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/lib/channel.js b/lib/channel.js
index 86c7cfe8..9a6ae3d1 100644
--- a/lib/channel.js
+++ b/lib/channel.js
@@ -3040,7 +3040,8 @@ Channel.prototype.filterMessage = function (msg) {
     }
 
     // Recombine the message
-    return parts.join("");
+    msg = parts.join("");
+    return XSS.sanitizeHTML(msg);
 };
 
 /**