mirror of
				https://git.code.sf.net/p/seeddms/code
				synced 2025-10-26 10:41:18 +00:00 
			
		
		
		
	fix security issue CVE-2020-28726
escape input form field value
This commit is contained in:
		
							parent
							
								
									386e37db0d
								
							
						
					
					
						commit
						877844cbba
					
				|  | @ -14,6 +14,8 @@ | |||
| - theme in configuration can override theme of user | ||||
| - saving the settings will no longer reenable an extention with no configuration | ||||
| - put a red/green bullet before the extension name in the settings | ||||
| - escape value of dropfolderfile in input form field created by | ||||
|   SeedDMS_Bootstrap_Style::getDropFolderChooserHtml() (CVE-2020-2872) | ||||
| 
 | ||||
| -------------------------------------------------------------------------------- | ||||
|                      Changes in version 5.1.20 | ||||
|  |  | |||
|  | @ -1669,7 +1669,7 @@ $(document).ready(function() { | |||
| 
 | ||||
| 	function getDropFolderChooserHtml($formName, $dropfolderfile="", $showfolders=0) { /* {{{ */ | ||||
| 		$content =  "<div class=\"input-append\">\n"; | ||||
| 		$content .= "<input readonly type=\"text\" id=\"dropfolderfile".$formName."\" name=\"dropfolderfile".$formName."\" value=\"".$dropfolderfile."\">"; | ||||
| 		$content .= "<input readonly type=\"text\" id=\"dropfolderfile".$formName."\" name=\"dropfolderfile".$formName."\" value=\"".htmlspecialchars($dropfolderfile)."\">"; | ||||
| 		$content .= "<button type=\"button\" class=\"btn\" id=\"clearfilename".$formName."\"><i class=\"fa fa-remove\"></i></button>"; | ||||
| 		$content .= $this->getModalBoxLink( | ||||
| 			array( | ||||
|  |  | |||
		Loading…
	
		Reference in New Issue
	
	Block a user
	 Uwe Steinmann
						Uwe Steinmann