lainwir3d/dolibarr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

FIX XSS vulnerability in description of list of audit events.

Browse Source
This commit is contained in:
Laurent Destailleur 2020-01-19 18:55:22 +01:00
parent 6a958dd45b
commit 041d5aeb46
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
htdocs/admin/tools/listevents.php
View File

@ -310,7 +310,7 @@ if ($result)
$text=$langs->trans($val[0], isset($val[1])?$val[1]:'', isset($val[2])?$val[2]:'', isset($val[3])?$val[3]:'', isset($val[4])?$val[4]:'');
if (! empty($reg[2])) $text.=$reg[2];
}
print dol_string_nohtmltag($text);
print dol_escape_htmltag($text);
print '</td>';
// More informations