]> git.donarmstrong.com Git - debbugs.git/blobdiff - templates/en_US/cgi/pkgreport_options_search_key.tmpl
projects / debbugs.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Resolve two XSS (closes: #504608)
[debbugs.git] / templates / en_US / cgi / pkgreport_options_search_key.tmpl
diff --git a/templates/en_US/cgi/pkgreport_options_search_key.tmpl b/templates/en_US/cgi/pkgreport_options_search_key.tmpl
index 1c2ecd9df0421086cf050980b7afd34f5402e7d8..e09fdff3f889374336598897e6303658f49e4a2f 100644 (file)
--- a/templates/en_US/cgi/pkgreport_options_search_key.tmpl
+++ b/templates/en_US/cgi/pkgreport_options_search_key.tmpl
@@ -1,6 +1,6 @@
 <nobr><select name="_fo_searchkey">
 {output_select_options(\@search_key_order,$search||'')}
 </select>
-<input type="text" name="_fo_searchvalue" value ="{$search_value||''}">
+<input type="text" name="_fo_searchvalue" value ="{html_escape($search_value||'')}">
 <!-- {$value_index} -->
 </nobr>
Debian bug tracker development