From b3a0bf7864b53b939a2f2929bc2bf9e6149b9bf0 Mon Sep 17 00:00:00 2001
From: Angel Fernando Quiroz Campos <angelfqc.18@gmail.com>
Date: Tue, 9 Oct 2018 16:09:45 -0500
Subject: [PATCH] Remove XSS when registering user

See https://packetstormsecurity.com/files/149711/chamilolms1118fn-xss.txt
---
 main/auth/inscription.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/main/auth/inscription.php b/main/auth/inscription.php
index 33889e7d2b..96e9f33796 100755
--- a/main/auth/inscription.php
+++ b/main/auth/inscription.php
@@ -418,6 +418,7 @@ $defaults['extra_mail_notify_invitation'] = 1;
 $defaults['extra_mail_notify_message'] = 1;
 $defaults['extra_mail_notify_group_message'] = 1;
 
+$form->applyFilter('__ALL__', 'Security::remove_XSS');
 $form->setDefaults($defaults);
 $content = null;