Merge pull request #13 from EffectRenan/master

Fix XSS vulnerability
forkcms · May 3, 2021 · 0e71d59 · 0e71d59
2 parents 848283b + b56cbb0
commit 0e71d59
Showing 1 changed file with 8 additions and 5 deletions.
diff --git a/src/Backend/Modules/Search/Actions/Statistics.php b/src/Backend/Modules/Search/Actions/Statistics.php
@@ -49,12 +49,15 @@ private function showDataGrid(): void
     public static function parseRefererInDataGrid(string $data): string
     {
         $data = unserialize($data, ['allowed_classes' => false]);
-        if (!isset($data['server']['HTTP_REFERER'])) {
-            return '';
-        }
 
-        $referrer = htmlspecialchars($data['server']['HTTP_REFERER']);
+        if (isset($data['server']['HTTP_REFERER'])) {                          
+            $referrer = $data['server']['HTTP_REFERER'];        
+            if (preg_match('/^(http|https):\/\//', $referrer)) {
+                $referrer = htmlspecialchars($referrer);
+                return '<a href="' . $referrer . '">' . $referrer . '</a>';
+            }
+        }
 
-        return '<a href="' . $referrer . '">' . $referrer . '</a>';
+        return '';
     }
 }