Skip to content
Permalink
Browse files Browse the repository at this point in the history
fix: [security] Fix to stored XSS
- as reported by David Heise
  • Loading branch information
mokaddem committed Jul 27, 2019
1 parent c951228 commit 26bedd8
Showing 1 changed file with 4 additions and 1 deletion.
5 changes: 4 additions & 1 deletion app/webroot/js/event-graph.js
Expand Up @@ -2183,7 +2183,10 @@ eventGraph.update_scope();
dataHandler.fetch_data_and_update(true, function() {
var $select = $('#network-typeahead');
dataHandler.get_typeaheadData_search().forEach(function(element) {
$select.append('<option value="' + element + '">' + element + '</option>');
var $option = $('<option></option>');
$option.text(element);
$option.attr('value', $option.text());
$select.append($option);
});
$('#network-typeahead').chosen(chosen_options).on('change', function(evt, params) {
var value = params.selected;
Expand Down

0 comments on commit 26bedd8

Please sign in to comment.