Skip to content
Snippets Groups Projects
Verified Commit dd107478 authored by Damien's avatar Damien
Browse files

FEAT #11823 TIME 0:10 Fix xss

parent 71042d01
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
apps/maarch_entreprise/reports/report_by_period.php
+ 1
1
View file @ dd107478
...@@ -84,7 +84,7 @@ $content .= '<div id="params">'; ...@@ -84,7 +84,7 @@ $content .= '<div id="params">';
while ($res = $stmt->fetchObject()) { while ($res = $stmt->fetchObject()) {
$content .= '<option'; $content .= '<option';
$content .= " value='".$res->type_id."'>"; $content .= " value='".$res->type_id."'>";
$content .= $res->description.'</option>'; $content .= functions::xssafe($res->description).'</option>';
} }
$content .= '</select>'; $content .= '</select>';
$js .= '$j("#doctypes_chosen").chosen({width: "95%", disable_search_threshold: 10, search_contains: true});'; $js .= '$j("#doctypes_chosen").chosen({width: "95%", disable_search_threshold: 10, search_contains: true});';
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment