projects / civicrm-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 68b107c) | patch
security/core#65 - Fix XSS in Dashboard Report Title
authorPatrick Figel <pfigel@greenpeace.org>
Wed, 9 Oct 2019 10:45:33 +0000 (12:45 +0200)
committerSeamus Lee <seamuslee001@gmail.com>
Wed, 20 Nov 2019 21:24:22 +0000 (08:24 +1100)
commitf4ee4723c7b6ecb837906ba8f4df51e43b860ffb
tree47dcd19eef08f31d5e62fe802bfcb7f818d8d999tree | snapshot (zip tar.gz)
parent68b107ceb06ac51085871f371c7fc21c57e725fccommit | diff
security/core#65 - Fix XSS in Dashboard Report Title

This fixes an XSS in report titles displayed on the dashboard page
by escaping the title on output.
CRM/Core/BAO/Dashboard.php diff | blob | blame | history
js/Common.js diff | blob | blame | history
js/jquery/jquery.dashboard.js diff | blob | blame | history