From e3ba826e5dfd3b724f1ee97bebfd20ded3c70b10 Mon Sep 17 00:00:00 2001
From: Eric Espie <eric.espie@combodo.com>
Date: Thu, 1 Jun 2023 16:36:56 +0200
Subject: [PATCH] =?UTF-8?q?N=C2=B06349=20-=20Hardening=20code?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 pages/preferences.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pages/preferences.php b/pages/preferences.php
index adf2929c3..8359ad4e0 100644
--- a/pages/preferences.php
+++ b/pages/preferences.php
@@ -779,7 +779,7 @@ try {
 				foreach ($aShortcutClasses as $cShortcutPlugin) {
 					foreach ($cShortcutPlugin::GetShortcutKeys() as $aShortcutKey) {
 						$sKey = utils::ReadParam($aShortcutKey['id'], $aShortcutKey['key'], true, 'raw_data');
-						$aShortcutPrefs[$aShortcutKey['id']] = strtolower($sKey);
+						$aShortcutPrefs[$aShortcutKey['id']] = strtolower(utils::HtmlEntities($sKey));
 					}
 				}
 				appUserPreferences::SetPref('keyboard_shortcuts', $aShortcutPrefs);