[SS-2016-016] FIX Properly escape backURL for template injection

silverstripe · Nov 10, 2016 · 17097a4 · 17097a4
1 parent c914dde
commit 17097a4
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/security/CMSSecurity.php b/security/CMSSecurity.php
@@ -204,7 +204,7 @@ public function success() {
 				'<p>Login success. If you are not automatically redirected '.
 				'<a target="_top" href="{link}">click here</a></p>',
 				'Login message displayed in the cms popup once a user has re-authenticated themselves',
-				array('link' => $backURL)
+				array('link' => Convert::raw2att($backURL))
 			)
 		));