Skip to content

Commit 475e077

Browse files
committed
SECURITY Sanitize messages passed to generated JS calls in FormResponse::status_message(), e.g. to avoid XSS on 'Successfully published <page title>' messages
1 parent bdd6391 commit 475e077

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

Diff for: core/control/FormResponse.php

+2-2
Original file line numberDiff line numberDiff line change
@@ -146,8 +146,8 @@ static function get_page($id, $form = 'Form_EditForm', $uniquenessID = null) {
146146
* @param $status string
147147
*/
148148
static function status_message($message = "", $status = null) {
149-
$JS_message = Convert::raw2js($message);
150-
$JS_status = Convert::raw2js($status);
149+
$JS_message = Convert::raw2js(Convert::raw2xml($message));
150+
$JS_status = Convert::raw2js(Convert::raw2xml($status));
151151
if(isset($JS_status)) {
152152
self::$status_messages[$JS_status] = "statusMessage('{$JS_message}', '{$JS_status}');";
153153
} else {

0 commit comments

Comments
 (0)