[freeside-commits] branch FREESIDE_3_BRANCH updated. c649441b5fdab63a35cdfe3907b486630af658bb
Christopher Burger
burgerc at 420.am
Fri Jun 30 14:59:37 PDT 2017
The branch, FREESIDE_3_BRANCH has been updated
via c649441b5fdab63a35cdfe3907b486630af658bb (commit)
from 76efbc5d717233b0cd55130c9938d43b2398dc5c (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit c649441b5fdab63a35cdfe3907b486630af658bb
Author: Christopher Burger <burgerc at freeside.biz>
Date: Fri Jun 30 13:24:29 2017 -0400
RT# 74666 - fixed vulnerability by escaping quotation_description var
Conflicts:
httemplate/view/quotation.html
diff --git a/httemplate/view/quotation.html b/httemplate/view/quotation.html
index 4769934..0e3e8b3 100755
--- a/httemplate/view/quotation.html
+++ b/httemplate/view/quotation.html
@@ -11,7 +11,7 @@ function areyousure(href, message) {
% if ( $quotation->custnum ) {
<h2>Quotation #<% $quotationnum %>
% if ($quotation->quotation_description) {
- (<% $quotation->quotation_description %>)
+ (<% $quotation->quotation_description |h %>)
% }
</h2>
% }
-----------------------------------------------------------------------
Summary of changes:
httemplate/view/quotation.html | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
More information about the freeside-commits
mailing list