KTS-2178

"cross site scripting" Implemented. Reviewed By: Kevin Fourie git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@7005 c91229c3-7414-0410-bfa2-8a42b809f60b

KTS-2178
"cross site scripting" Implemented. Reviewed By: Kevin Fourie git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@7005 c91229c3-7414-0410-bfa2-8a42b809f60b
Conrad Vermeulen
1 parent 25384bcb
Showing 1 changed file with 1 additions and 1 deletions
plugins/rssplugin/templates/RSSPlugin/dashlet.smarty
@@ -9,7 +9,7 @@
 		{/if}
 		{if $feedlist}
 		{section name=feed loop=$feedlist}
-		<option value='{$feedlist[feed].url}'>{$feedlist[feed].title|sanitize}</option>
+		<option value='{$feedlist[feed].url|sanitize}'>{$feedlist[feed].title|sanitize}</option>
 		{/section}
 		{/if}
 	</select>