From 788b5b0014d1e6032c46e88045d9219cc9957abd Mon Sep 17 00:00:00 2001
From: Uwe Steinmann <steinm@debian.org>
Date: Thu, 28 Jan 2021 12:01:59 +0100
Subject: [PATCH] escape email address

---
 views/bootstrap/class.RoleMgr.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/views/bootstrap/class.RoleMgr.php b/views/bootstrap/class.RoleMgr.php
index 1072f4929..d5236366c 100644
--- a/views/bootstrap/class.RoleMgr.php
+++ b/views/bootstrap/class.RoleMgr.php
@@ -85,7 +85,7 @@ $(document).ready( function() {
 					echo "<tr>";
 					echo "<td>";
 					echo htmlspecialchars($currUser->getFullName())." (".htmlspecialchars($currUser->getLogin()).")";
-					echo "<br /><a href=\"mailto:".$currUser->getEmail()."\">".htmlspecialchars($currUser->getEmail())."</a>";
+					echo "<br /><a href=\"mailto:".htmlspecialchars($currUser->getEmail())."\">".htmlspecialchars($currUser->getEmail())."</a>";
 					if($currUser->getComment())
 						echo "<br /><small>".htmlspecialchars($currUser->getComment())."</small>";
 					echo "</td>";