Fixed sanitization issue in subscribers

no issue - Added sanitization to subscribed_url & subscribed_referrer fields when rendering error state Credits: Antony Garand
TryGhost · Nov 7, 2018 · 305d13e · 305d13e
1 parent eb22429
commit 305d13e
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/core/server/apps/subscribers/lib/router.js b/core/server/apps/subscribers/lib/router.js
@@ -35,6 +35,8 @@ function _renderer(req, res) {
  */
 function errorHandler(error, req, res, next) {
     req.body.email = '';
+    req.body.subscribed_url = santizeUrl(req.body.subscribed_url);
+    req.body.subscribed_referrer = santizeUrl(req.body.subscribed_referrer);
 
     if (error.statusCode !== 404) {
         res.locals.error = error;