Skip to content
Permalink
Browse files Browse the repository at this point in the history
Fixed possible XSS in the translations grid
  • Loading branch information
brusch committed Oct 30, 2019
1 parent 6fc6119 commit ca036e9
Showing 1 changed file with 3 additions and 0 deletions.
Expand Up @@ -102,6 +102,9 @@ pimcore.settings.translations = Class.create({
dataIndex: "_" + languages[i],
filter: 'string',
getEditor: this.getCellEditor.bind(this, languages[i]),
renderer: function (text) {
return replace_html_event_attributes(strip_tags(text, 'div,span,b,strong,em,i,small,sup,sub,p'));
},
id: "translation_column_" + this.translationType + "_" + languages[i].toLowerCase()
};
if (applyInitialSettings) {
Expand Down

0 comments on commit ca036e9

Please sign in to comment.