Skip to content

Commit 0b695ae

Browse files
csteippmglaser
csteipp
authored and
mglaser
committed
SECURITY: escape sortKey in pageInfo
DEFAULTSORT isn't escaped before being added to the action=info table. Bug: 63251 Change-Id: I087bfde8cbc69c3507f68ee3cb6e22aba0ffa7db
1 parent 6e18e5c commit 0b695ae

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

Diff for: includes/actions/InfoAction.php

+1
Original file line numberDiff line numberDiff line change
@@ -262,6 +262,7 @@ protected function pageInfo() {
262262
$sortKey = $pageProperties['defaultsort'];
263263
}
264264

265+
$sortKey = htmlspecialchars( $sortKey );
265266
$pageInfo['header-basic'][] = array( $this->msg( 'pageinfo-default-sort' ), $sortKey );
266267

267268
// Page length (in bytes)

0 commit comments

Comments
 (0)