From 6771fc9b95e26b40e88ba3de943b9fcb2d830b29 Mon Sep 17 00:00:00 2001
From: Daniel Maya <daniel.maya@artica.es>
Date: Tue, 3 May 2022 11:36:06 +0200
Subject: [PATCH] #8925 Fixed XSS

---
 pandora_console/general/logon_ok.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/pandora_console/general/logon_ok.php b/pandora_console/general/logon_ok.php
index 4d18e0e79d..d836d9f22c 100644
--- a/pandora_console/general/logon_ok.php
+++ b/pandora_console/general/logon_ok.php
@@ -278,11 +278,11 @@ foreach ($sessions as $session) {
         true
     ).human_time_comparation($session['utimestamp'], 'tiny');
     $data[3] = $session_ip_origen;
-    $description = str_replace([',', ', '], ', ', $session['descripcion']);
+    $description = io_safe_output(str_replace([',', ', '], ', ', $session['descripcion']));
     if (strlen($description) > 100) {
-        $data[4] = '<div >'.io_safe_output(substr($description, 0, 150).'...').'</div>';
+        $data[4] = '<div >'.io_safe_input(substr($description, 0, 150)).'...</div>';
     } else {
-        $data[4] = '<div >'.io_safe_output($description).'</div>';
+        $data[4] = '<div >'.io_safe_input($description).'</div>';
     }
 
     array_push($table->data, $data);