From: Mitch Jackson <mitch@freeside.biz>
Date: Sat, 27 Oct 2018 17:08:52 +0000 (-0400)
Subject: RT# 31964 Fix XSS
X-Git-Url: http://git.freeside.biz/gitweb/?p=freeside.git;a=commitdiff_plain;h=702c7a001e2a065ca833a7d5711754b38278e41d

RT# 31964 Fix XSS
---

diff --git a/httemplate/view/prospect_main.html b/httemplate/view/prospect_main.html
index 66abffcdd..ac56fa7a2 100644
--- a/httemplate/view/prospect_main.html
+++ b/httemplate/view/prospect_main.html
@@ -41,8 +41,8 @@
 
 % foreach my $contact ( $prospect_main->contact ) {
     <TR>
-      <TD ALIGN="right"><% $contact->contact_classname %> Contact</TD>
-      <TD BGCOLOR="#FFFFFF"><% $contact->line %></TD>
+      <TD ALIGN="right"><% $contact->contact_classname |h %> Contact</TD>
+      <TD BGCOLOR="#FFFFFF"><% $contact->line |h %></TD>
     </TR>
 %}