From: Jerome Jutteau Date: Tue, 1 May 2018 10:37:55 +0000 (+0200) Subject: [BUGFIX] Fix XSS in admin pannel X-Git-Tag: 3.4.1~5 X-Git-Url: https://git.p6c8.net/jirafeau_mojo42.git/commitdiff_plain/a7d0b9810f960d97ac03488cae9814b31e6ff3f7 [BUGFIX] Fix XSS in admin pannel Signed-off-by: Jerome Jutteau --- diff --git a/lib/functions.php b/lib/functions.php index 9fa0e5e..e237274 100644 --- a/lib/functions.php +++ b/lib/functions.php @@ -553,13 +553,13 @@ function jirafeau_admin_list($name, $file_hash, $link_hash) { echo '
'; if (!empty($name)) { - echo t('FILENAME') . ": $name "; + echo t('FILENAME') . ": " . jirafeau_escape($name); } if (!empty($file_hash)) { - echo t('FILE') . ": $file_hash "; + echo t('FILE') . ": " . jirafeau_escape($file_hash); } if (!empty($link_hash)) { - echo t('LINK') . ": $link_hash "; + echo t('LINK') . ": " . jirafeau_escape($link_hash); } if (empty($name) && empty($file_hash) && empty($link_hash)) { echo t('LS_FILES');