Skip to content
Snippets Groups Projects
Commit cef6131e authored by Lukas Reschke's avatar Lukas Reschke
Browse files

Sanitize HTML in html_select_options

parent 2f036bcc
Branches
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
lib/template.php
+ 1
1
View file @ cef6131e
...@@ -147,7 +147,7 @@ function html_select_options($options, $selected, $params=array()) { ...@@ -147,7 +147,7 @@ function html_select_options($options, $selected, $params=array()) {
$label = $label[$label_name]; $label = $label[$label_name];
} }
$select = in_array($value, $selected) ? ' selected="selected"' : ''; $select = in_array($value, $selected) ? ' selected="selected"' : '';
$html .= '<option value="' . $value . '"' . $select . '>' . $label . '</option>'."\n"; $html .= '<option value="' . OC_Util::sanitizeHTML($value) . '"' . $select . '>' . OC_Util::sanitizeHTML($label) . '</option>'."\n";
} }
return $html; return $html;
} }
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment