0x2620/openmedialibrary
1
0
Fork 0
Code Issues 131 Pull requests Releases Wiki Activity

fix another xss vuln

Browse source
This commit is contained in:
rlx 2016-01-10 15:17:41 +05:30
parent e24ed24ee5
commit 38779d2576
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
static/js/importExportDialog.js
View file

@ -122,7 +122,10 @@ oml.ui.importExportDialog = function(selected) {
lists.length ? [{}] : []
).concat(
lists.map(function(list) {
return {id: list.name, title: list.name};
return {
id: Ox.encodeHTMLEntities(list.name),
title: Ox.encodeHTMLEntities(list.name)
};
})
).concat(selected == 'import' ? [
{},