michael/webmin
1
0
Fork 0
mirror of https://github.com/webmin/webmin.git synced 2026-02-03 14:13:29 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Fix to address XSS issues #4

Browse Source
This commit is contained in:
Ilia Ross
2023-08-09 19:07:13 +03:00
parent e6105bb757
commit 862bbc36df
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
filter/index.cgi
View File

@@ -49,6 +49,10 @@ if (&no_user_procmailrc()) {
}
@filters = &list_filters();
foreach my $filter (@filters) {
$filter->{'action'} = &html_escape($filter->{'action'})
if ($filter->{'action'});
}
@links = ( );
if (@filters) {
push(@links, &select_all_link("d"), &select_invert_link("d"));
@@ -116,7 +120,7 @@ if (@filters || &get_global_spamassassin()) {
# Work out nice condition and action descriptions
local $cond;
($cond, $lastalways) = &describe_condition($f);
$cond = &ui_link("edit.cgi?idx=$f->{'index'}",$cond);
$cond = &ui_link("edit.cgi?idx=$f->{'index'}", &html_escape($cond));
local $action = &describe_action($f, \@folders);
# Create mover links