From 0370e46725e75413f5f6f712a362ec79cbc469dd Mon Sep 17 00:00:00 2001
From: Nestor <npegane@hotmail.com>
Date: Wed, 14 Mar 2018 17:33:05 +0100
Subject: [PATCH] FIX #7310 added xssafe function on noteshort

---
 modules/visa/class/class_modules_tools_Abstract.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/visa/class/class_modules_tools_Abstract.php b/modules/visa/class/class_modules_tools_Abstract.php
index 768dbb870fb..b656fe21af8 100755
--- a/modules/visa/class/class_modules_tools_Abstract.php
+++ b/modules/visa/class/class_modules_tools_Abstract.php
@@ -1187,7 +1187,7 @@ abstract class visa_Abstract extends Database
                             //$noteShort = $request->cut_string($user_notes[$i]['label'], 50);
                             $noteShort = $request->cut_string(str_replace(array("'", "\r", "\n","\""),array("'", " ", " ", "&quot;"),
                             $user_notes[$i]['label']), 50);
-
+							$noteShort = functions::xssafe($noteShort);
                             $note = $user_notes[$i]['label'];
                             $userArray = $users_tools->get_user($user_notes[$i]['author']);
                             $date = $request->dateformat($user_notes[$i]['date']);
-- 
GitLab