From 36463d4ab412d9f499b14abdb4dde30727e0042c Mon Sep 17 00:00:00 2001
From: Stephane Caron <caronstephane1@gmail.com>
Date: Wed, 6 May 2015 20:26:16 -0400
Subject: [PATCH] [#149] Filter out chars to prevent XSS

---
 js/jquery.prettyPhoto.js | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/js/jquery.prettyPhoto.js b/js/jquery.prettyPhoto.js
index 0436a49..806b53c 100644
--- a/js/jquery.prettyPhoto.js
+++ b/js/jquery.prettyPhoto.js
@@ -2,10 +2,10 @@
 	Class: prettyPhoto
 	Use: Lightbox clone for jQuery
 	Author: Stephane Caron (http://www.no-margin-for-errors.com)
-	Version: 3.1.5
+	Version: 3.1.6
 ------------------------------------------------------------------------- */
 (function($) {
-	$.prettyPhoto = {version: '3.1.5'};
+	$.prettyPhoto = {version: '3.1.6'};
 	
 	$.fn.prettyPhoto = function(pp_settings) {
 		pp_settings = jQuery.extend({
@@ -885,7 +885,7 @@
 	function getHashtag(){
 		var url = location.href;
 		hashtag = (url.indexOf('#prettyPhoto') !== -1) ? decodeURI(url.substring(url.indexOf('#prettyPhoto')+1,url.length)) : false;
-
+		hashtag = hashtag.replace(/<|>/g,'');
 		return hashtag;
 	};