[freeside-commits] branch master updated. 305bd1ffe9c46db5fefffcc41ef6f256374293ee

Ivan ivan at 420.am
Thu Mar 28 17:49:40 PDT 2013


The branch, master has been updated
       via  305bd1ffe9c46db5fefffcc41ef6f256374293ee (commit)
      from  23f228d5db4ae99722235a8739aea046a0b434cd (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 305bd1ffe9c46db5fefffcc41ef6f256374293ee
Author: Ivan Kohler <ivan at freeside.biz>
Date:   Thu Mar 28 17:49:40 2013 -0700

    fix XSS

diff --git a/httemplate/search/cust_main.cgi b/httemplate/search/cust_main.cgi
index 8e3c813..2c09c69 100755
--- a/httemplate/search/cust_main.cgi
+++ b/httemplate/search/cust_main.cgi
@@ -244,7 +244,7 @@
 %      my $pkg_rowspan = shift @pkg_rowspans;
 
         <% $n1 %><TD CLASS="grid" BGCOLOR="<% $bgcolor %>"  ROWSPAN="<% $pkg_rowspan%>">
-            <A HREF="<% $pkgview %>"><FONT SIZE=-1><% $pkg_comment %></FONT></A>
+            <A HREF="<% $pkgview %>"><FONT SIZE=-1><% $pkg_comment |h %></FONT></A>
         </TD>
 
 %       my $n2 = '';

-----------------------------------------------------------------------

Summary of changes:
 httemplate/search/cust_main.cgi |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)




More information about the freeside-commits mailing list