VladPolskiy/webmin
1
0
Fork 0
mirror of https://github.com/webmin/webmin.git synced 2025-07-29 11:50:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix XSS in webmin search

Browse Source
This commit is contained in:
Jamie Cameron
2014-05-14 12:59:34 -07:00
parent c466161e51
commit bde84e40a8
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
webmin_search.cgi
View File

@ -12,7 +12,7 @@ do 'webmin-search-lib.pl';
$prod = &get_product_name();
$ucprod = ucfirst($prod);
&ui_print_unbuffered_header(undef,
$in{'title'} || &text('wsearch_title', $ucprod), "", undef, 0, 1);
&html_escape($in{'title'}) || &text('wsearch_title', $ucprod), "", undef, 0, 1);
# Validate search text
$re = $in{'search'};