From bf53eb5a6b9e11fd120cf221b4e849f12857a193 Mon Sep 17 00:00:00 2001
From: Daniel Maya <daniel.maya@artica.es>
Date: Thu, 30 Jan 2020 17:29:07 +0100
Subject: [PATCH] Fixed XSS vulnerability

---
 pandora_console/include/functions_ui.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pandora_console/include/functions_ui.php b/pandora_console/include/functions_ui.php
index 9bfb9eca55..dea1614576 100755
--- a/pandora_console/include/functions_ui.php
+++ b/pandora_console/include/functions_ui.php
@@ -3820,7 +3820,7 @@ function ui_get_url_refresh($params=false, $relative=true, $add_post=true)
                 $url .= $key.'['.$k.']='.$v.'&';
             }
         } else {
-            $url .= $key.'='.$value.'&';
+            $url .= $key.'='.io_safe_input($value).'&';
         }
     }