ELOG/elog
0
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixed XSS vulnerability with subtext

Browse Source 
SVN revision: 1913
This commit is contained in:
ritt
2007-09-06 19:28:30 +00:00
parent cc5db91d04
commit c80f09165b
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/elogd.c
+4 -2
View File
@@ -17372,8 +17372,10 @@ void show_page_filters(LOGBOOK * lbs, int n_msg, int page_n, BOOL mode_commands,
("<input onClick=\"this.value='';\" title=\"%s\" type=text onChange=\"document.form1.submit()\"",
str);
sprintf(str, "-- %s --", list[index]);
rsprintf(" name=\"%s\" value=\"%s\">\n", list[index],
isparam(list[index]) && *getparam(list[index]) ? getparam(list[index]) : str);
if (isparam(list[index]) && *getparam(list[index]))
strencode2(str, getparam(list[index]), sizeof(str));
rsprintf(" name=\"%s\" value=\"%s\">\n", list[index], str);
}
} else {