Commit 5199dc28 authored by Nigel McNie's avatar Nigel McNie
Browse files

Fix multiple XSS holes on user profile page.

Credits to Steffen Joeris who spotted the first one.
parent 8eb064ac
......@@ -10,7 +10,7 @@
{/if}
</h2>
<div>
{$introduction}
{$introduction|clean_text}
<div class="fr user-icon">
<img src="{$WWWROOT}thumb.php?type=profileicon&amp;maxwidth=100&amp;maxheight=100&amp;id={$USERID}" alt="">
<div>
......@@ -39,7 +39,7 @@
</div>
<ul id="user-info">
{foreach from=$USERFIELDS name=userfields key=key item=item}
<li><label>{str section=artefact.internal tag=$key}:</label> {$item}</li>
<li><label>{str section=artefact.internal tag=$key|escape}:</label> {$item|escape}</li>
{/foreach}
</ul>
{if $relationship == 'pending'}
......@@ -57,7 +57,7 @@
<h4><a href="{$WWWROOT}view/view.php?id={$item->id}">{$item->title|escape}</a></h4>
<span>
{if $item->description}
{$item->description}
{$item->description|clean_text}
{/if}
{if $item->description && $item->artefacts}<br>{/if}
{if $item->artefacts}
......@@ -80,7 +80,7 @@
<td class="r{cycle values=0,1}">
<h4><a href="{$WWWROOT}group/view.php?id={$item->id}">{$item->name|escape}</a> - {str tag=$item->type section=group}</h4>
{if $item->description}
{$item->description}
{$item->description|clean_text}
{/if}
</td>
</tr>
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment