From f270a3ced4153c24faacdd082f1e9cdcc49eb2bf Mon Sep 17 00:00:00 2001
From: Alex Jakimenko <alex.jakimenko@gmail.com>
Date: Tue, 15 Apr 2014 07:31:50 +0200
Subject: [PATCH] Two small fixes

User input needs to be HTML quoted when printed.
The regular expression matching needs the ignore case flag.
---
 modules/despam.pl | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/despam.pl b/modules/despam.pl
index ea8d4cb8..da21fec2 100644
--- a/modules/despam.pl
+++ b/modules/despam.pl
@@ -91,14 +91,14 @@ sub DespamBannedContent {
     foreach my $url (@urls) {
       if ($url =~ /($regexp)/i) {
 	return Tss('Rule "%1" matched "%2" on this page.',
-		   QuoteHtml($regexp), $url);
+		   QuoteHtml($regexp), QuoteHtml($url));
       }
     }
   }
   # depends on strange-spam.pl!
   foreach (@DespamStrangeRules) {
     my $regexp = $_;
-    if ($str =~ /($regexp)/) {
+    if ($str =~ /($regexp)/i) {
       my $match = $1;
       $match =~ s/\n/ /g;
       return Tss('Rule "%1" matched "%2" on this page.',