Skip to content

Commit aca42ef

Browse files
committed
Escape javascript variable content
Signed-off-by: Michal Čihař <michal@cihar.com>
1 parent 316792b commit aca42ef

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

Diff for: templates/header_location.phtml

+2-2
Original file line numberDiff line numberDiff line change
@@ -25,8 +25,8 @@ $uri = isset($uri) ? $uri : null;
2525
<body>
2626
<script type="text/javascript">
2727
//<![CDATA[
28-
document.write('<p><a href="<?php echo htmlspecialchars($uri) ?>"><?php echo __('Go') ?></a></p>');
28+
document.write('<p><a href="<?php echo PMA_escapeJsString(htmlspecialchars($uri)) ?>"><?php echo __('Go') ?></a></p>');
2929
//]]>
3030
</script>
3131
</body>
32-
</html>
32+
</html>

0 commit comments

Comments
 (0)