Skip to content

Commit 3b40366

Browse files
committed
Encoding for haproxy_listeners.php. Fixes #9335
Encode desc and table_actionsaclN before output.
1 parent 2957ba8 commit 3b40366

File tree

4 files changed

+6
-6
lines changed

4 files changed

+6
-6
lines changed

Diff for: net/pfSense-pkg-haproxy-devel/Makefile

+1-1
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@
22

33
PORTNAME= pfSense-pkg-haproxy-devel
44
PORTVERSION= 0.59
5-
PORTREVISION= 16
5+
PORTREVISION= 17
66
CATEGORIES= net
77
MASTER_SITES= # empty
88
DISTFILES= # empty

Diff for: net/pfSense-pkg-haproxy-devel/files/usr/local/www/haproxy/haproxy_listeners.php

+2-2
Original file line numberDiff line numberDiff line change
@@ -367,7 +367,7 @@ function sort_sharedfrontends(&$a, &$b) {
367367
<?=$frontend['name'];?>
368368
</td>
369369
<td>
370-
<?=$frontend['desc'];?>
370+
<?=htmlspecialchars($frontend['desc']);?>
371371
</td>
372372
<td>
373373
<?php
@@ -412,7 +412,7 @@ function sort_sharedfrontends(&$a, &$b) {
412412
echo "<div title='{$hint}'>";
413413
echo "<a href='haproxy_pool_edit.php?id={$backend}'>{$backend}</a>";
414414
if (!empty($actionitem['acl'])) {
415-
echo "&nbsp;if({$actionitem['acl']})";
415+
echo "&nbsp;if(" . htmlspecialchars($actionitem['acl']) . ")";
416416
}
417417
echo "<br/></div>";
418418
}

Diff for: net/pfSense-pkg-haproxy/Makefile

+1-1
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@
22

33
PORTNAME= pfSense-pkg-haproxy
44
PORTVERSION= 0.59
5-
PORTREVISION= 15
5+
PORTREVISION= 16
66
CATEGORIES= net
77
MASTER_SITES= # empty
88
DISTFILES= # empty

Diff for: net/pfSense-pkg-haproxy/files/usr/local/www/haproxy/haproxy_listeners.php

+2-2
Original file line numberDiff line numberDiff line change
@@ -367,7 +367,7 @@ function sort_sharedfrontends(&$a, &$b) {
367367
<?=$frontend['name'];?>
368368
</td>
369369
<td>
370-
<?=$frontend['desc'];?>
370+
<?=htmlspecialchars($frontend['desc']);?>
371371
</td>
372372
<td>
373373
<?php
@@ -412,7 +412,7 @@ function sort_sharedfrontends(&$a, &$b) {
412412
echo "<div title='{$hint}'>";
413413
echo "<a href='haproxy_pool_edit.php?id={$backend}'>{$backend}</a>";
414414
if (!empty($actionitem['acl'])) {
415-
echo "&nbsp;if({$actionitem['acl']})";
415+
echo "&nbsp;if(" . htmlspecialchars($actionitem['acl']) . ")";
416416
}
417417
echo "<br/></div>";
418418
}

0 commit comments

Comments
 (0)