This was probably bound to happen after the June patches (https://www.vaultwiki.org/articles/288/) which addressed HTML injections via username fields. In the interest of security, we may have been a little over-zealous in some places. In particular, this one is already handled by the contributor template.
In src/addons/vw/vw/_core/view/factory/contributors/vw.php, find and remove:
Code:
if (!vw_Hard_Core::model('User')->username_safe())
{
$user['username'] = vw_Hard_Core::model('String')->htmlspecialchars_uni($user['username']);
}
This site uses cookies to help personalize content, to tailor your experience, and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.