SF Bug #3477910 - XSS vulnerability in query
This commit is contained in:
parent
dece0f496f
commit
7dc8d57d69
@ -497,7 +497,7 @@ class QueryRender extends PageRender {
|
|||||||
$this->getAjaxRef($base),
|
$this->getAjaxRef($base),
|
||||||
$this->getAjaxRef($base),
|
$this->getAjaxRef($base),
|
||||||
($show == $this->getAjaxRef($base) ? '#F0F0F0' : '#E0E0E0'),
|
($show == $this->getAjaxRef($base) ? '#F0F0F0' : '#E0E0E0'),
|
||||||
$base);
|
htmlspecialchars($base));
|
||||||
}
|
}
|
||||||
echo '</tr>';
|
echo '</tr>';
|
||||||
echo '</table>';
|
echo '</table>';
|
||||||
@ -545,7 +545,7 @@ class QueryRender extends PageRender {
|
|||||||
echo ' ]</small>';
|
echo ' ]</small>';
|
||||||
|
|
||||||
echo '<br />';
|
echo '<br />';
|
||||||
printf('<small>%s: <b>%s</b></small>',_('Base DN'),$base);
|
printf('<small>%s: <b>%s</b></small>',_('Base DN'),htmlspecialchars($base));
|
||||||
|
|
||||||
echo '<br />';
|
echo '<br />';
|
||||||
printf('<small>%s: <b>%s</b></small>',_('Filter performed'),htmlspecialchars($this->template->resultsdata[$base]['filter']));
|
printf('<small>%s: <b>%s</b></small>',_('Filter performed'),htmlspecialchars($this->template->resultsdata[$base]['filter']));
|
||||||
|
Loading…
Reference in New Issue
Block a user