inteligr8/alfresco-community-repo
1
0
Fork 0
mirror of https://github.com/Alfresco/alfresco-community-repo.git synced 2025-08-07 17:49:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fixed ALF-11922 "XSS attack occurs on start workflow with XSS properties."

Browse Source 
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@32667 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
This commit is contained in:
Erik Winlof
2011-12-09 12:11:39 +00:00
parent f966fd3ae1
commit 83824f6d53
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
source/java/org/alfresco/web/ui/repo/component/property/BaseAssociationEditor.java
View File

@@ -812,9 +812,9 @@ public abstract class BaseAssociationEditor extends UIInput
out.write("'");
if (this.searchTerm != null)
{
out.write(" value='");
out.write(this.searchTerm);
out.write("'");
out.write(" value=\"");
out.write(Utils.encode(this.searchTerm));
out.write("\"");
}
out.write("/>&nbsp;&nbsp;<input type='submit' value='");
out.write(Application.getMessage(context, MSG_SEARCH));