fix part_pkg.comment xss

author: Ivan Kohler <ivan@freeside.biz> 2012-12-08 11:07:04 -0800
committer: Ivan Kohler <ivan@freeside.biz> 2012-12-08 11:07:04 -0800
commit: 786beb09ecbf02c572ca01c61353e163f0637dbd (patch)
tree: 1255f336e54bc4be5abd9e9d6e0bece5e279e311 /httemplate/browse
parent: fd4322f01b8c53b3f1f9e54ca15184930b0443de (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/httemplate/browse/agent_type.cgi b/httemplate/browse/agent_type.cgi
index 1959302d2..7711dccf7 100755
--- a/httemplate/browse/agent_type.cgi
+++ b/httemplate/browse/agent_type.cgi
@@ -44,9 +44,9 @@ my $agent_type = shift;
          [
            {
              #'data'  => $part_pkg->pkg. ' - '. $part_pkg->comment,
-             'data'  => $type_pkgs->pkg. ' - '.
+             'data'  => encode_entities($type_pkgs->pkg). ' - '.
                         ( $type_pkgs->custom ? '(CUSTOM) ' : '' ).
-                        $type_pkgs->comment,
+                        encode_entities($type_pkgs->comment),
              'align' => 'left',
              'link'  => $p. 'edit/part_pkg.cgi?'. $type_pkgs->pkgpart,
            },
author	Ivan Kohler <ivan@freeside.biz>	2012-12-08 11:07:04 -0800
committer	Ivan Kohler <ivan@freeside.biz>	2012-12-08 11:07:04 -0800
commit	786beb09ecbf02c572ca01c61353e163f0637dbd (patch)
tree	1255f336e54bc4be5abd9e9d6e0bece5e279e311 /httemplate/browse
parent	fd4322f01b8c53b3f1f9e54ca15184930b0443de (diff)