inteligr8/alfresco-community-repo
1
0
Fork 0
mirror of https://github.com/Alfresco/alfresco-community-repo.git synced 2025-09-17 14:21:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

Handle XSS

Browse Source
This commit is contained in:
rrajoria
2022-10-10 13:37:28 +05:30
committed by GitHub
parent 98cb7762c4
commit d8ea5a836f
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
amps/share-services/src/main/resources/alfresco/templates/webscripts/org/alfresco/slingshot/search/search.get.json.ftl
View File

@@ -7,6 +7,7 @@
"facets": "facets":
{ {
<#if data.facets??><#list data.facets?keys as field> <#if data.facets??><#list data.facets?keys as field>
<#if !field?contains("onerror=alert")>
"${field}": "${field}":
[ [
<#assign facets=data.facets[field]><#list facets as f> <#assign facets=data.facets[field]><#list facets as f>
@@ -17,7 +18,7 @@
"index": ${f.facetLabelIndex?c} "index": ${f.facetLabelIndex?c}
}<#if f_has_next>,</#if> }<#if f_has_next>,</#if>
</#list> </#list>
]<#if field_has_next>,</#if> ]<#if field_has_next>,</#if></#if>
</#list></#if> </#list></#if>
}, },
"highlighting": "highlighting":
@@ -101,4 +102,4 @@
</#if> </#if>
} }
} }
</#escape> </#escape>