Skip to content
Snippets Groups Projects

Fixes #1539 Filtering field values for xss vulnerability

Merged Fixes #1539 Filtering field values for xss vulnerability
uma.s/vtigercrm:Filtering_Xss_vulnerable_field_Data into 7.4.0
Merged Uma requested to merge uma.s/vtigercrm:Filtering_Xss_vulnerable_field_Data into 7.4.0
Compare
and
+ 10
10
Compare changes
  • Side-by-side
  • Inline
Files
layouts/v7/modules/Vtiger/uitypes/OwnerFieldSearchView.tpl
+ 1
1
@@ -40,7 +40,7 @@
{if count($ALL_ACTIVEGROUP_LIST) gt 0}
<optgroup label="{vtranslate('LBL_GROUPS')}">
{foreach key=OWNER_ID item=OWNER_NAME from=$ALL_ACTIVEGROUP_LIST}
<option value="{$OWNER_NAME}" data-picklistvalue= '{$OWNER_NAME}' {if in_array(trim($OWNER_NAME),$SEARCH_VALUES)} selected {/if}
<option value="{$OWNER_NAME}" data-picklistvalue= '{$OWNER_NAME}' {if in_array(trim(decode_html($OWNER_NAME)),$SEARCH_VALUES)} selected {/if}
{if array_key_exists($OWNER_ID, $ACCESSIBLE_GROUP_LIST)} data-recordaccess=true {else} data-recordaccess=false {/if} >
{$OWNER_NAME}
</option>

Copyright 2023 Vtiger. All rights reserved.