mirror of https://github.com/MISP/MISP
fix: [security] Stored XSS when viewing galaxy cluster elements in JSON format
parent
b9619549af
commit
f318f7c0dd
|
@ -83,7 +83,7 @@ if ($context == 'JSONView') {
|
||||||
|
|
||||||
echo $this->element('/genericElements/IndexTable/index_table', $indexOptions);
|
echo $this->element('/genericElements/IndexTable/index_table', $indexOptions);
|
||||||
if ($context == 'JSONView') {
|
if ($context == 'JSONView') {
|
||||||
echo sprintf('<div id="elementJSONDiv" class="well well-small">%s</div>', json_encode($JSONElements));
|
echo sprintf('<div id="elementJSONDiv" class="well well-small">%s</div>', json_encode(h($JSONElements)));
|
||||||
}
|
}
|
||||||
?>
|
?>
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue