composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-02-13 07:24:13 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fixed a potential XSS vulnerability.

Browse Source 
SVN:2.0.2[3666]
This commit is contained in:
Denis Flaven
2015-07-30 09:23:21 +00:00
parent 51624dd05e
commit 3f80b27044
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
application/dashboard.class.inc.php
View File

@@ -312,7 +312,7 @@ abstract class Dashboard
public function Render($oPage, $bEditMode = false, $aExtraParams = array()) public function Render($oPage, $bEditMode = false, $aExtraParams = array())
{ {
$oPage->add('<h1>'.Dict::S($this->sTitle).'</h1>'); $oPage->add('<h1>'.htmlentities(Dict::S($this->sTitle), ENT_QUOTES, 'UTF-8', false).'</h1>');
$oLayout = new $this->sLayoutClass; $oLayout = new $this->sLayoutClass;
$oLayout->Render($oPage, $this->aCells, $bEditMode, $aExtraParams); $oLayout->Render($oPage, $this->aCells, $bEditMode, $aExtraParams);
if (!$bEditMode) if (!$bEditMode)