N°4127 Fix XSS vulnerability in autocomplete lists

2026-02-13 07:24:13 +01:00 · 2021-08-12 14:20:20 +02:00
parent 7577fbb8bf
commit 53fd41e748
1 changed files with 2 additions and 1 deletions
--- a/js/extkeywidget.js
+++ b/js/extkeywidget.js
@@ -239,7 +239,8 @@ function ExtKeyWidget(id, sTargetClass, sFilter, sTitle, bSelectMode, oWizHelper
 		.autocomplete("instance")._renderItem = function (ul, item) {
 			$(ul).addClass('selectize-dropdown');
 			var term = this.term.replace("/([\^\$\(\)\[\]\{\}\*\.\+\?\|\\])/gi", "\\$1");
-			var val = item.label.replace(new RegExp("(?![^&;]+;)(?!<[^<>]*)("+term+")(?![^<>]*>)(?![^&;]+;)", "gi"), "<strong>$1</strong>");
+			var val = $('<div>').text(item.label).html();
+			val = val.replace(new RegExp("(?![^&;]+;)(?!<[^<>]*)("+term+")(?![^<>]*>)(?![^&;]+;)", "gi"), "<strong>$1</strong>");
 			if (item.obsolescence_flag == '1') {
 				val = ' <span class="object-ref-icon text_decoration"><span class="fas fa-eye-slash object-obsolete fa-1x fa-fw"></span></span>'+val;
 			}