RT# 73422 Fix XSS

author Mitch Jackson <mitch@freeside.biz>

Sat, 27 Oct 2018 15:24:17 +0000 (11:24 -0400)

committer Mitch Jackson <mitch@freeside.biz>

Sat, 27 Oct 2018 16:08:09 +0000 (12:08 -0400)
author Mitch Jackson <mitch@freeside.biz>
Sat, 27 Oct 2018 15:24:17 +0000 (11:24 -0400)
committer Mitch Jackson <mitch@freeside.biz>
Sat, 27 Oct 2018 16:08:09 +0000 (12:08 -0400)
diff --git a/httemplate/search/contact.html b/httemplate/search/contact.html

index 35a74a5..50935ba 100644 (file)
--- a/httemplate/search/contact.html
+++ b/httemplate/search/contact.html
@@ -162,10 +162,10 @@ my %classname =
  
  # And now for something completly different:
  my @report = (
  
  # And now for something completly different:
  my @report = (
-  { label => 'First',  field => sub { encode_entities shift->contact_first }},
-  { label => 'Last',   field => sub { encode_entities shift->contact_last }},
-  { label => 'Title',  field => sub { encode_entities shift->contact_title }},
-  { label => 'E-Mail', field => sub { encode_entities shift->contact_email_emailaddress }},
+  { label => 'First',  field => 'contact_first' },
+  { label => 'Last',   field => 'contact_last'  },
+  { label => 'Title',  field => 'contact_title' },
+  { label => 'E-Mail', field => 'contact_email_emailaddress' },
    { label => 'Work Phone',   field => $get_phone_sub->('Work') },
    { label => 'Mobile Phone', field => $get_phone_sub->('Mobile') },
    { label => 'Home Phone',   field => $get_phone_sub->('Home') },
    { label => 'Work Phone',   field => $get_phone_sub->('Work') },
    { label => 'Mobile Phone', field => $get_phone_sub->('Mobile') },
    { label => 'Home Phone',   field => $get_phone_sub->('Home') },
author	Mitch Jackson <mitch@freeside.biz>
	Sat, 27 Oct 2018 15:24:17 +0000 (11:24 -0400)
committer	Mitch Jackson <mitch@freeside.biz>
	Sat, 27 Oct 2018 16:08:09 +0000 (12:08 -0400)