Fixed issue #7966: XSS vulnerability when adding a user group

LimeSurvey · Oct 9, 2013 · 224180d · 224180d
1 parent 06b130c
commit 224180d
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/application/views/admin/usergroup/viewUserGroup_view.php b/application/views/admin/usergroup/viewUserGroup_view.php
@@ -21,7 +21,7 @@
 <table width='100%' border='0'>
 	<tr><td align='justify' colspan='2' height='4'>
  	<font size='2' ><strong><?php $clang->eT("Description: ");?></strong>
-    <?php echo $usergroupdescription;?></font></td></tr>
+    <?php echo htmlspecialchars($usergroupdescription);?></font></td></tr>
 </table>
 <?php
 }