diff options
| author | Mitch Jackson <mitch@freeside.biz> | 2018-10-23 18:49:05 -0400 |
|---|---|---|
| committer | Mitch Jackson <mitch@freeside.biz> | 2018-10-23 20:54:24 -0400 |
| commit | f1d7da36b1cb88df944ad7fb39967b63a29183e5 (patch) | |
| tree | be757a3bb0f5f3d3fac618d41bb69ebdee977bfe | |
| parent | fad1695f2df61d3fadc5d6fc85527e09d083bf20 (diff) | |
RT# 74031 Fix XSS
| -rw-r--r-- | httemplate/browse/realestate_unit.html | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/httemplate/browse/realestate_unit.html b/httemplate/browse/realestate_unit.html index 399cd2583..a2fff7bc2 100644 --- a/httemplate/browse/realestate_unit.html +++ b/httemplate/browse/realestate_unit.html @@ -41,8 +41,8 @@ 'unit_title', sub { return '' unless $_[0]->custnum; - return $_[0]->company if $_[0]->company; - return $_[0]->first.' '.$_[0]->last; + return encode_entities( $_[0]->company ) if $_[0]->company; + return encode_entities( $_[0]->first.' '.$_[0]->last ); }, ], links => [ |