diff options
| author | Ivan Kohler <ivan@freeside.biz> | 2012-11-11 22:20:19 -0800 |
|---|---|---|
| committer | Ivan Kohler <ivan@freeside.biz> | 2012-11-11 22:20:19 -0800 |
| commit | b2101823682f3738f5b367d2c1f2a7c6d47cdad1 (patch) | |
| tree | 861ad1cfbf0db4279ccef14a3a6967376e4751a7 /httemplate/edit/cust_main/first_pkg | |
| parent | f06a0610477b0ba8e1931722c3105b880fbc35c3 (diff) | |
fix XSS
Diffstat (limited to 'httemplate/edit/cust_main/first_pkg')
| -rw-r--r-- | httemplate/edit/cust_main/first_pkg/svc_acct.html | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/httemplate/edit/cust_main/first_pkg/svc_acct.html b/httemplate/edit/cust_main/first_pkg/svc_acct.html index b1ccc137c..717bf5025 100644 --- a/httemplate/edit/cust_main/first_pkg/svc_acct.html +++ b/httemplate/edit/cust_main/first_pkg/svc_acct.html @@ -5,7 +5,7 @@ <TD> <INPUT TYPE = "text" NAME = "username" - VALUE = "<% $opt{'username'} %>" + VALUE = "<% $opt{'username'} |h %>" SIZE = <% $ulen2 %> MAXLENGTH = <% $ulen %> > @@ -26,7 +26,7 @@ <TD> <INPUT TYPE = "text" NAME = "_password" - VALUE = "<% $opt{'password'} %>" + VALUE = "<% $opt{'password'} |h %>" SIZE = <% $pmax2 %> MAXLENGTH = <% $passwordmax %>> % unless ( $opt{'password_verify'} ) { @@ -41,7 +41,7 @@ <TD> <INPUT TYPE = "text" NAME = "_password2" - VALUE = "<% $opt{'password2'} %>" + VALUE = "<% $opt{'password2'} |h %>" SIZE = <% $pmax2 %> MAXLENGTH = <% $passwordmax %>> </TD> @@ -51,7 +51,7 @@ % if ( $conf->exists('security_phrase') ) { <TR> <TD ALIGN="right"><% mt('Security Phrase') |h %></TD> - <TD><INPUT TYPE="text" NAME="sec_phrase" VALUE="<% $opt{'sec_phrase'} %>"> + <TD><INPUT TYPE="text" NAME="sec_phrase" VALUE="<% $opt{'sec_phrase'} |h %>"> </TD> </TR> % } else { |