tyler.durden/pandorafms
1
0
Fork 0
mirror of https://github.com/pandorafms/pandorafms.git synced 2025-07-28 16:24:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'ent-7647-vulnerabilidad-xss-en.nombre.filtro-eventos' into 'develop'

Browse Source 
Fixedd XSS on load filter event name

See merge request artica/pandorafms!4174
This commit is contained in:
Daniel Rodriguez 2021-08-09 09:00:15 +00:00
commit 77d00fd9e2
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pandora_console/operation/events/events.php
View File

@ -1498,7 +1498,7 @@ try {
$active_filters_div .= '<div class="label box-shadow">'.__('Current filter').'</div>';
$active_filters_div .= '<div id="current_filter" class="content">';
if ($loaded_filter !== false) {
$active_filters_div .= io_safe_output($loaded_filter['id_name']);
$active_filters_div .= htmlentities(io_safe_output($loaded_filter['id_name']));
} else {
$active_filters_div .= __('Not set.');
}