Permalink
Browse files

LPS-72916 Workaround for XSS issue in SWFObject

  • Loading branch information...
samuelkong authored and brianchandotcom committed Jun 10, 2017
1 parent e57cb8f commit 9435af4ef8a90b5333da925a5ec860a43d18c031
Showing with 4 additions and 0 deletions.
  1. +4 −0 portal-web/docroot/html/portal/flash.jsp
@@ -23,6 +23,10 @@ int height = ParamUtil.getInteger(request, "height", 768);
int width = ParamUtil.getInteger(request, "width", 1024);
String movie = ParamUtil.getString(request, "movie");
// LPS-72916
movie = HtmlUtil.escapeHREF(movie);
%>
<html>

0 comments on commit 9435af4

Please sign in to comment.