Skip to content
Permalink
Browse files Browse the repository at this point in the history
RA-1424: escapeJs vulnerable to XSS (#92)
  • Loading branch information
jnsereko committed Jun 24, 2021
1 parent 2e5939d commit 35f8190
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion omod/src/main/webapp/pages/userApp.gsp
Expand Up @@ -43,7 +43,7 @@
${ui.message("referenceapplication.app.appId.label")} (${ ui.message("coreapps.formValidation.messages.requiredField.label") })
</span>
</label>
<input class="form-control form-control-sm form-control-lg form-control-md required" id="appId-field" type="text" name="appId" value="${userApp.appId ? ui.escapeJs(ui.escapeHtml(userApp.appId)) : ""}" size="80" placeholder="${ ui.message("referenceapplication.app.definition.placeholder") }" />
<input class="form-control form-control-sm form-control-lg form-control-md required" id="appId-field" type="text" name="appId" value="${userApp.appId ? ui.encodeJavaScript(ui.escapeHtml(userApp.appId)) : ""}" size="80" placeholder="${ ui.message("referenceapplication.app.definition.placeholder") }" />
<%}%>
</p>
<p>
Expand Down

0 comments on commit 35f8190

Please sign in to comment.