Fixed issue #12225: [security] Cross-Site Scripting

LimeSurvey · Mar 24, 2017 · 09458d0 · 09458d0
1 parent 4f88e77
commit 09458d0
Show file tree

Hide file tree

Showing 4 changed files with 195 additions and 195 deletions.
diff --git a/application/models/SurveyDynamic.php b/application/models/SurveyDynamic.php
@@ -338,7 +338,7 @@ public function getExtendedData($colName, $sLanguage, $base64jsonFieldMap)
                 $sSurveyEntry .='<tr>';
                 if (isset($aFilesInfo[$iFileIndex]))
                 {
-                    $sSurveyEntry.= '<td>'.CHtml::link(rawurldecode($aFilesInfo[$iFileIndex]['name']), App()->createUrl("/admin/responses",array("sa"=>"actionDownloadfile","surveyid"=>self::$sid,"iResponseId"=>$this->id,"iQID"=>$oFieldMap->qid,"iIndex"=>$iFileIndex)) ).'</td>';
+                    $sSurveyEntry.= '<td>'.CHtml::link(CHtml::encode(rawurldecode($aFilesInfo[$iFileIndex]['name'])), App()->createUrl("/admin/responses",array("sa"=>"actionDownloadfile","surveyid"=>self::$sid,"iResponseId"=>$this->id,"iQID"=>$oFieldMap->qid,"iIndex"=>$iFileIndex)) ).'</td>';
                     $sSurveyEntry.= '<td>'.sprintf('%s Mb',round($aFilesInfo[$iFileIndex]['size']/1000,2)).'</td>';
 
                     if ($aQuestionAttributes['show_title'])