Commit b87b56828b53c39c22ffb6b1550bb3b7a2bf7ac8
1 parent
c66afabb
KTS-2178
"cross site scripting" Updated. Reviewed By: Kevin Fourie git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@6930 c91229c3-7414-0410-bfa2-8a42b809f60b
Showing
1 changed file
with
1 additions
and
1 deletions
templates/ktstandard/action/discussion_thread_list_item.smarty
| 1 | 1 | <tr> |
| 2 | - <td><a href="{addQS}action=viewThread&fDocumentId={$context->oDocument->getId()}&fThreadId={$thread->getId()}{/addQS}">{$first_comment->getSubject()}</a></td> | |
| 2 | + <td><a href="{addQS}action=viewThread&fDocumentId={$context->oDocument->getId()}&fThreadId={$thread->getId()}{/addQS}">{$first_comment->getSubject()|sanitize}</a></td> | |
| 3 | 3 | <td>{$creator->getName()}</td> |
| 4 | 4 | <td>{$thread->getNumberOfViews()}</td> |
| 5 | 5 | <td>{$thread->getNumberOfReplies()}</td> | ... | ... |