RT# 31964 Fix XSS

author Mitch Jackson <mitch@freeside.biz>

Sat, 27 Oct 2018 17:08:52 +0000 (13:08 -0400)

committer Mitch Jackson <mitch@freeside.biz>

Sat, 27 Oct 2018 17:08:52 +0000 (13:08 -0400)
author Mitch Jackson <mitch@freeside.biz>
Sat, 27 Oct 2018 17:08:52 +0000 (13:08 -0400)
committer Mitch Jackson <mitch@freeside.biz>
Sat, 27 Oct 2018 17:08:52 +0000 (13:08 -0400)
diff --git a/httemplate/view/prospect_main.html b/httemplate/view/prospect_main.html

index 66abffc..ac56fa7 100644 (file)
--- a/httemplate/view/prospect_main.html
+++ b/httemplate/view/prospect_main.html
@@ -41,8 +41,8 @@
  
  % foreach my $contact ( $prospect_main->contact ) {
      <TR>
-      <TD ALIGN="right"><% $contact->contact_classname %> Contact</TD>
-      <TD BGCOLOR="#FFFFFF"><% $contact->line %></TD>
+      <TD ALIGN="right"><% $contact->contact_classname |h %> Contact</TD>
+      <TD BGCOLOR="#FFFFFF"><% $contact->line |h %></TD>
      </TR>
  %}
author	Mitch Jackson <mitch@freeside.biz>
	Sat, 27 Oct 2018 17:08:52 +0000 (13:08 -0400)
committer	Mitch Jackson <mitch@freeside.biz>
	Sat, 27 Oct 2018 17:08:52 +0000 (13:08 -0400)