1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-12-22 05:20:56 +01:00

Fix XSS in path names of inline comment list.

This commit is contained in:
epriestley 2011-04-11 20:24:33 -07:00
parent 85cc13b607
commit 1bba2c9913

View file

@ -119,7 +119,7 @@ final class DifferentialRevisionCommentView extends AphrontView {
$inline_render[] =
'<tr>'.
'<th colspan="2">'.
$changeset->getFileName().
phutil_escape_html($changeset->getFileName()).
'</th>'.
'</tr>';
foreach ($inlines as $inline) {