chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request #3884 from cbluesprl/cblue_forum_posts_xss

Browse Source 
Fix XSS Breach in forum viewthread posts text
pull/3888/head
Julio Montoya 5 years ago committed by GitHub
parent 7e3f9afbd1 63bf4ad848
commit 28255278c5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 1
      main/forum/viewthread.php

1
main/forum/viewthread.php
Unescape View File

@ -624,6 +624,7 @@ foreach ($posts as $post) {
$post['post_title'] .= Display::tag('div', $titlePost, ['class' => 'post-header']);
// the post body
$post['post_text'] = Security::remove_XSS($post['post_text']);
$post['post_data'] = Display::tag('div', $post['post_text'], ['class' => 'post-body']);
// The check if there is an attachment

Write Preview
Loading…
Cancel
Save