From 7b506f74f8586bca512b05dcfc00cd69dbff9cc2 Mon Sep 17 00:00:00 2001
From: Darren <darren@darrenwhitlen.com>
Date: Fri, 23 Jan 2015 13:46:41 +0000
Subject: [PATCH] XSS fix in tabs (Thanks to @alvarodh5)

---
 client/src/views/tabs.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/client/src/views/tabs.js b/client/src/views/tabs.js
index 92e84d3..a447707 100644
--- a/client/src/views/tabs.js
+++ b/client/src/views/tabs.js
@@ -69,7 +69,8 @@ _kiwi.view.Tabs = Backbone.View.extend({
 
     panelAdded: function (panel) {
         // Add a tab to the panel
-        panel.tab = $('<li><span>' + (panel.get('title') || panel.get('name')) + '</span><div class="activity"></div></li>');
+        panel.tab = $('<li><span></span><div class="activity"></div></li>');
+        panel.tab.find('span').text(panel.get('title') || panel.get('name'));
 
         if (panel.isServer()) {
             panel.tab.addClass('server');
-- 
2.25.1