diff options
| author | Ivan Kohler <ivan@freeside.biz> | 2012-11-11 23:08:50 -0800 |
|---|---|---|
| committer | Ivan Kohler <ivan@freeside.biz> | 2012-11-11 23:08:50 -0800 |
| commit | acbc4a9ff91b668197012772172af24b9cc42df6 (patch) | |
| tree | dac458ec6fc08d322aefdc96b8decfc3634b5839 /httemplate/elements/small_prospect_view.html | |
| parent | 1b0e3600f2004f0977c9906b3f7db56f3ca80f5d (diff) | |
fix XSS
Diffstat (limited to 'httemplate/elements/small_prospect_view.html')
| -rw-r--r-- | httemplate/elements/small_prospect_view.html | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/httemplate/elements/small_prospect_view.html b/httemplate/elements/small_prospect_view.html index 4942e8dc7..26e830bc4 100644 --- a/httemplate/elements/small_prospect_view.html +++ b/httemplate/elements/small_prospect_view.html @@ -1,5 +1,5 @@ % my $link = "${p}view/prospect_main.html?". $prospect_main->prospectnum; -Prospect: <A HREF="<%$link%>"><% $prospect_main->name %></A> +Prospect: <A HREF="<%$link%>"><% $prospect_main->name |h %></A> <%init> my($prospect_main, %opt) = @_; |