[freeside-commits] branch FREESIDE_4_BRANCH updated. 8eac87da359ab1ff577c2118566f3976952dd1c3
Mitch Jackson
mitch at freeside.biz
Sat Oct 27 16:20:07 PDT 2018
The branch, FREESIDE_4_BRANCH has been updated
via 8eac87da359ab1ff577c2118566f3976952dd1c3 (commit)
from 2d2c4981b8b2757afc4c7e70cbf2da02f0f7b4a5 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 8eac87da359ab1ff577c2118566f3976952dd1c3
Author: Mitch Jackson <mitch at freeside.biz>
Date: Sat Oct 27 19:18:40 2018 -0400
RT# 31964 Fix XSS
diff --git a/httemplate/view/prospect_main.html b/httemplate/view/prospect_main.html
index f4dd4146f..f9f22aaac 100644
--- a/httemplate/view/prospect_main.html
+++ b/httemplate/view/prospect_main.html
@@ -24,8 +24,8 @@
% foreach my $prospect_contact ( $prospect_main->prospect_contact ) {
% my $contact = $prospect_contact->contact;
<TR>
- <TH ALIGN="right"><% $prospect_contact->contact_classname %> Contact</TD>
- <TD BGCOLOR="#FFFFFF"><% $contact->line %></TD>
+ <TH ALIGN="right"><% $prospect_contact->contact_classname |h %> Contact</TD>
+ <TD BGCOLOR="#FFFFFF"><% $contact->line |h %></TD>
</TR>
%}
@@ -55,7 +55,7 @@
<TR>
<TH ALIGN="right">Tax status</TD>
<TD BGCOLOR="#FFFFFF">
- <B><% $tax_status->taxstatus %>:</B> <% $tax_status->description %>
+ <B><% $tax_status->taxstatus |h %>:</B> <% $tax_status->description |h %>
</TD>
</TR>
% }
-----------------------------------------------------------------------
Summary of changes:
httemplate/view/prospect_main.html | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
More information about the freeside-commits
mailing list