Skip to content
Permalink
Browse files Browse the repository at this point in the history
fix: [security] Correctly sanitize search string in Galaxy view
- As reported by Dawid Czarnecki
  • Loading branch information
mokaddem committed Feb 10, 2020
1 parent 8e2da13 commit 3d982d9
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion app/View/Galaxies/view.ctp
Expand Up @@ -41,7 +41,7 @@ $(document).ready(function () {
$uri = "/galaxy_clusters/index/" . $galaxy['Galaxy']['id'];
if (isset($passedArgsArray)) $uri .= '/searchall:' . $passedArgsArray['all'];
?>
$.get("<?php echo $uri;?>", function(data) {
$.get("<?php echo h($uri);?>", function(data) {
$("#clusters_div").html(data);
});

Expand Down

0 comments on commit 3d982d9

Please sign in to comment.