Fixes #1220 XSS vulnerability is addressed

4d4f12b5 · Uma · b402f424 · 4d4f12b5 · 4d4f12b5
Commit 4d4f12b5 authored 5 years ago by Uma
--- a/packages/vtiger/optional/ModComments.zip
+++ b/packages/vtiger/optional/ModComments.zip
--- a/pkg/vtiger/modules/ModComments/modules/ModComments/actions/SaveAjax.php
+++ b/pkg/vtiger/modules/ModComments/modules/ModComments/actions/SaveAjax.php
@@ -73,11 +73,6 @@ class ModComments_SaveAjax_Action extends Vtiger_SaveAjax_Action {
 	 */
 	public function getRecordModelFromRequest(Vtiger_Request $request) {
 		$recordModel = parent::getRecordModelFromRequest($request);
-		
-//        $commentContent = $request->getRaw('commentcontent');
-//        $purifiedContent = vtlib_purify(decode_html($commentContent));
-//        // Purify malicious html event attributes
-//        $fieldValue = purifyHtmlEventAttributes(decode_html($purifiedContent),true);
 		$recordModel->set('commentcontent', $request->getRaw('commentcontent'));
        $recordModel->set('is_private', $request->get('is_private'));