[freeside-commits] branch FREESIDE_2_3_BRANCH updated. f6c799b390c1fabbf8ca3d7798088d94dfcc4f21
Ivan
ivan at 420.am
Sun Feb 17 15:23:59 PST 2013
The branch, FREESIDE_2_3_BRANCH has been updated
via f6c799b390c1fabbf8ca3d7798088d94dfcc4f21 (commit)
from 4a1dfeb36af2cd5721944ab9096f783634867718 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit f6c799b390c1fabbf8ca3d7798088d94dfcc4f21
Author: Ivan Kohler <ivan at freeside.biz>
Date: Sun Feb 17 15:23:58 2013 -0800
fix low-impact XSS
diff --git a/httemplate/edit/REAL_cust_pkg.cgi b/httemplate/edit/REAL_cust_pkg.cgi
index 166a3b7..05516b9 100755
--- a/httemplate/edit/REAL_cust_pkg.cgi
+++ b/httemplate/edit/REAL_cust_pkg.cgi
@@ -38,7 +38,7 @@
<TR>
<TD ALIGN="right">Comment</TD>
- <TD BGCOLOR="#ffffff"><% $part_pkg->comment %></TD>
+ <TD BGCOLOR="#ffffff"><% $part_pkg->comment |h %></TD>
</TR>
<TR>
diff --git a/httemplate/edit/cust_pkg_detail.html b/httemplate/edit/cust_pkg_detail.html
index 009ed5c..5e10706 100644
--- a/httemplate/edit/cust_pkg_detail.html
+++ b/httemplate/edit/cust_pkg_detail.html
@@ -28,7 +28,7 @@
<TR>
<TD ALIGN="right">Comment</TD>
- <TD BGCOLOR="#ffffff"><% $part_pkg->comment %></TD>
+ <TD BGCOLOR="#ffffff"><% $part_pkg->comment |h %></TD>
</TR>
<TR>
-----------------------------------------------------------------------
Summary of changes:
httemplate/edit/REAL_cust_pkg.cgi | 2 +-
httemplate/edit/cust_pkg_detail.html | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
More information about the freeside-commits
mailing list