Index: openacs-4/packages/acs-templating/tcl/richtext-procs.tcl
===================================================================
RCS file: /usr/local/cvsroot/openacs-4/packages/acs-templating/tcl/richtext-procs.tcl,v
diff -u -r1.3.2.3 -r1.3.2.4
--- openacs-4/packages/acs-templating/tcl/richtext-procs.tcl	16 Mar 2003 14:15:38 -0000	1.3.2.3
+++ openacs-4/packages/acs-templating/tcl/richtext-procs.tcl	24 Mar 2003 09:13:05 -0000	1.3.2.4
@@ -63,7 +63,7 @@
     if { [lsearch { text/enhanced text/html } $format] != -1 } {
         set check_result [ad_html_security_check $contents]
         if { ![empty_string_p $check_result] } {
-            set message $check_result
+            set message [ad_quotehtml $check_result]
             return 0
         }
     }
Index: openacs-4/packages/forums/www/message-post.tcl
===================================================================
RCS file: /usr/local/cvsroot/openacs-4/packages/forums/www/message-post.tcl,v
diff -u -r1.13.2.5 -r1.13.2.6
--- openacs-4/packages/forums/www/message-post.tcl	20 Jan 2003 14:29:04 -0000	1.13.2.5
+++ openacs-4/packages/forums/www/message-post.tcl	24 Mar 2003 09:11:10 -0000	1.13.2.6
@@ -48,7 +48,7 @@
     -html {rows 20 cols 60 wrap soft} \
     -validate {
 	empty {expr ![empty_string_p [string trim $value]]} {Please enter a message}
-	html { expr {( [string match [set l_html_p [ns_queryget html_p f]] "t"] && [empty_string_p [set v_message [ad_html_security_check $value]]] ) || [string match $l_html_p "f"] } }
+	html { expr {( [string match [set l_html_p [ns_queryget html_p f]] "t"] && [empty_string_p [set v_message [ad_quotehtml [ad_html_security_check $value]]]] ) || [string match $l_html_p "f"] } }
 	     {}	
 	}