From: Darren <darren@darrenwhitlen.com>
Date: Fri, 23 Jan 2015 13:46:41 +0000 (+0000)
Subject: XSS fix in tabs (Thanks to @alvarodh5)
X-Git-Url: https://vcs.fsf.org/?a=commitdiff_plain;h=7b506f74f8586bca512b05dcfc00cd69dbff9cc2;p=KiwiIRC.git

XSS fix in tabs (Thanks to @alvarodh5)
---

diff --git a/client/src/views/tabs.js b/client/src/views/tabs.js
index 92e84d3..a447707 100644
--- a/client/src/views/tabs.js
+++ b/client/src/views/tabs.js
@@ -69,7 +69,8 @@ _kiwi.view.Tabs = Backbone.View.extend({
 
     panelAdded: function (panel) {
         // Add a tab to the panel
-        panel.tab = $('<li><span>' + (panel.get('title') || panel.get('name')) + '</span><div class="activity"></div></li>');
+        panel.tab = $('<li><span></span><div class="activity"></div></li>');
+        panel.tab.find('span').text(panel.get('title') || panel.get('name'));
 
         if (panel.isServer()) {
             panel.tab.addClass('server');