Commit 455ec4c6722fdfbdc412e99725d2f9d102cfcdbe
1 parent
4763c644
KTS-2178
"cross site scripting" Updated. Reviewed By: Kevin Fourie git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@6942 c91229c3-7414-0410-bfa2-8a42b809f60b
Showing
1 changed file
with
2 additions
and
2 deletions
templates/ktcore/forms/widgets/collection.smarty
| ... | ... | @@ -5,7 +5,7 @@ |
| 5 | 5 | <link rel="stylesheet" type="text/css" href="{$rootUrl}/resources/css/kt-framing.css" /> |
| 6 | 6 | <link rel="stylesheet" type="text/css" href="{$rootUrl}/resources/css/kt-contenttypes.css" /> |
| 7 | 7 | <link rel="stylesheet" type="text/css" href="{$rootUrl}/resources/css/kt-headings.css" /> |
| 8 | -<!--[if lt IE 7]><style type="text/css" media="all">@import url({$rootUrl}/resources/css/kt-ie-icons.css);</style><![endif]--> | |
| 8 | +<!--[if lt IE 7]><style type="text/css" media="all">@import url({$rootUrl}/resources/css/kt-ie-icons.css);</style><![endif]--> | |
| 9 | 9 | |
| 10 | 10 | <script type="text/javascript" src="{$rootUrl}/thirdpartyjs/MochiKit/Base.js"> </script> |
| 11 | 11 | <script type="text/javascript" src="{$rootUrl}/thirdpartyjs/MochiKit/Iter.js"> </script> |
| ... | ... | @@ -25,7 +25,7 @@ |
| 25 | 25 | <input type="hidden" name="{$targetname}" value="{$folder->getId()}" /> |
| 26 | 26 | |
| 27 | 27 | {foreach from=$breadcrumbs item=breadcrumb name=bc} |
| 28 | -<a href="{$breadcrumb.url}">{$breadcrumb.name}</a> | |
| 28 | +<a href="{$breadcrumb.url}">{$breadcrumb.name|sanitize}</a> | |
| 29 | 29 | {if !$smarty.foreach.bc.last} |
| 30 | 30 | » |
| 31 | 31 | {/if} | ... | ... |