From 7028a82d5c0f499ab582f7c452a759945fb915d0 Mon Sep 17 00:00:00 2001
From: Ivan Kohler <ivan@freeside.biz>
Date: Wed, 9 Mar 2016 16:10:59 -0800
Subject: [PATCH] xss

---
 httemplate/search/quotation.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/httemplate/search/quotation.html b/httemplate/search/quotation.html
index 2eba71cb0..16affeb02 100755
--- a/httemplate/search/quotation.html
+++ b/httemplate/search/quotation.html
@@ -27,7 +27,7 @@
                          $prospect_main ? $prospect_main->name : '';
                        },
                    sub { my $cust_main = shift->cust_main;
-                         $cust_main ? $cust_main->name : '';
+                         $cust_main ? encode_entities($cust_main->name) : '';
                        },
                    'confidence',
                    sub { my $quot = shift;
-- 
2.11.0