Skip to content

Commit 895a131

Browse files
committed
Escape HTML when rendering AJAX error
Signed-off-by: Michal Čihař <michal@cihar.com>
1 parent 7966161 commit 895a131

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

Diff for: js/ajax.js

+2-2
Original file line numberDiff line numberDiff line change
@@ -787,8 +787,8 @@ $(document).ajaxError(function (event, request, settings) {
787787
PMA_ajaxShowMessage(
788788
'<div class="error">' +
789789
PMA_messages.strErrorProcessingRequest +
790-
'<div>' + errorCode + '</div>' +
791-
'<div>' + errorText + '</div>' +
790+
'<div>' + escapeHtml(errorCode) + '</div>' +
791+
'<div>' + escapeHtml(errorText) + '</div>' +
792792
'</div>',
793793
false
794794
);

0 commit comments

Comments
 (0)