ZaneYork
/
zoneminder
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix XSS in monitor Name

This commit is contained in:
Isaac Connor 2020-04-10 11:32:01 -04:00
parent 365f0240ad
commit fb70acdf6c
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
web/skins/classic/views/watch.php
View File

@ -62,7 +62,7 @@ xhtmlHeaders(__FILE__, $monitor->Name().' - '.translate('Feed'));
<div id="page"> <div id="page">
<?php if ( !$popup ) echo getNavBarHTML() ?> <?php if ( !$popup ) echo getNavBarHTML() ?>
<div id="header"> <div id="header">
<div id="monitorName"><?php echo $monitor->Name() ?></div> <div id="monitorName"><?php echo validHtmlStr($monitor->Name()) ?></div>
<div id="menuControls"> <div id="menuControls">
<?php <?php
if ( canView('Control') && $monitor->Type() == 'Local' ) { if ( canView('Control') && $monitor->Type() == 'Local' ) {