Fix to do a bit more filtering to prevent root user XSS itself

ui-lib.pl

@@ -996,13 +996,13 @@ foreach $o (@$opts) {
 	$o = [ $o ] if (!ref($o));
 	$rv .= "<option value=\"".&quote_escape($o->[0])."\"".
 	       ($sel{$o->[0]} ? " selected" : "").($o->[2] ne '' ? " ".$o->[2] : "").">".
-	       ($o->[1] || $o->[0])."</option>\n";
+	       &filter_javascript($o->[1] || $o->[0])."</option>\n";
 	$opt{$o->[0]}++;
 	}
 foreach $s (keys %sel) {
 	if (!$opt{$s} && $missing) {
 		$rv .= "<option value=\"".&quote_escape($s)."\"".
-		       " selected>".($s eq "" ? "&nbsp;" : $s)."</option>\n";
+		       " selected>".($s eq "" ? "&nbsp;" : &filter_javascript($s))."</option>\n";
 		}
 	}
 $rv .= "</select>\n";

usermin/clone_mod.cgi

@@ -7,6 +7,9 @@ require './usermin-lib.pl';
 &error_setup($text{'clone_err'});
 $access{'umods'} || &error($text{'acl_ecannot'});
 
+# Filter out potentially dangerous strings
+$in{'desc'} = &filter_javascript($in{'desc'});
+
 # Symlink the code directory
 &get_usermin_miniserv_config(\%miniserv);
 $src = $in{'mod'};

webmin/clone_mod.cgi

@@ -6,6 +6,9 @@ require './webmin-lib.pl';
 &ReadParse();
 &error_setup($text{'clone_err'});
 
+# Filter out potentially dangerous strings
+$in{'desc'} = &filter_javascript($in{'desc'});
+
 # Symlink the code directory
 $src = $in{'mod'};
 %minfo = &get_module_info($src);