From 3ebb1565a7251966647d81c4d0574a8db8a8d116 Mon Sep 17 00:00:00 2001
From: Arthur Schiwon <blizzz@owncloud.com>
Date: Mon, 16 Jun 2014 13:44:41 +0200
Subject: [PATCH 1/2] escape before output, fixes #9041

---
 settings/js/users/deleteHandler.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/settings/js/users/deleteHandler.js b/settings/js/users/deleteHandler.js
index 9cbe7cd514d..2d8b4499ee8 100644
--- a/settings/js/users/deleteHandler.js
+++ b/settings/js/users/deleteHandler.js
@@ -94,7 +94,7 @@ DeleteHandler.prototype.showNotification = function() {
 		}
 		$('#notification').data(this.notificationDataID, true);
 		var msg = this.notificationMessage.replace(this.notificationPlaceholder,
-											this.oidToDelete);
+											escapeHTML(this.oidToDelete));
 		this.notifier.showHtml(msg);
 	}
 };

From f12c4f6d11707d3206eba109c49ee2d58705e791 Mon Sep 17 00:00:00 2001
From: Arthur Schiwon <blizzz@owncloud.com>
Date: Mon, 16 Jun 2014 13:46:31 +0200
Subject: [PATCH 2/2] style

---
 settings/js/users/deleteHandler.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/settings/js/users/deleteHandler.js b/settings/js/users/deleteHandler.js
index 2d8b4499ee8..56355317f8d 100644
--- a/settings/js/users/deleteHandler.js
+++ b/settings/js/users/deleteHandler.js
@@ -93,8 +93,8 @@ DeleteHandler.prototype.showNotification = function() {
 			this.hideNotification();
 		}
 		$('#notification').data(this.notificationDataID, true);
-		var msg = this.notificationMessage.replace(this.notificationPlaceholder,
-											escapeHTML(this.oidToDelete));
+		var msg = this.notificationMessage.replace(
+			this.notificationPlaceholder, escapeHTML(this.oidToDelete));
 		this.notifier.showHtml(msg);
 	}
 };