diff options
author | Ivan Kohler <ivan@freeside.biz> | 2016-03-09 16:11:00 -0800 |
---|---|---|
committer | Ivan Kohler <ivan@freeside.biz> | 2016-03-09 16:11:00 -0800 |
commit | 32a2544d3e29dae5ec17c0da44179cc15609ee0a (patch) | |
tree | a5aeae07b5cf97d2ef588ae128a4c7ffa6dce019 /httemplate | |
parent | 93ccf206d7b85674807171f29328831de5953b1f (diff) |
xss
Diffstat (limited to 'httemplate')
-rwxr-xr-x | httemplate/search/quotation.html | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/httemplate/search/quotation.html b/httemplate/search/quotation.html index 2eba71cb0..16affeb02 100755 --- a/httemplate/search/quotation.html +++ b/httemplate/search/quotation.html @@ -27,7 +27,7 @@ $prospect_main ? $prospect_main->name : ''; }, sub { my $cust_main = shift->cust_main; - $cust_main ? $cust_main->name : ''; + $cust_main ? encode_entities($cust_main->name) : ''; }, 'confidence', sub { my $quot = shift; |