From 2f3cae8d61642f297105f7435c1d474b790b7d8f Mon Sep 17 00:00:00 2001
From: Calvo <luis.calvo@artica.es>
Date: Fri, 4 Jun 2021 13:36:32 +0200
Subject: [PATCH] Fixedd XSS on load filter event name

---
 pandora_console/operation/events/events.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pandora_console/operation/events/events.php b/pandora_console/operation/events/events.php
index 9dab979e38..a4840ee92b 100644
--- a/pandora_console/operation/events/events.php
+++ b/pandora_console/operation/events/events.php
@@ -1472,7 +1472,7 @@ try {
     $active_filters_div .= '<div class="label box-shadow">'.__('Current filter').'</div>';
     $active_filters_div .= '<div id="current_filter" class="content">';
     if ($loaded_filter !== false) {
-        $active_filters_div .= io_safe_output($loaded_filter['id_name']);
+        $active_filters_div .= htmlentities(io_safe_output($loaded_filter['id_name']));
     } else {
         $active_filters_div .= __('Not set.');
     }