forms: Fixup possible XSS exploit
Displaying field values on various pages and dialogs could result in cross site scripting exploits. Fixes osTicket/osTicket-1.8#296
Showing
- include/ajax.tickets.php 6 additions, 4 deletionsinclude/ajax.tickets.php
- include/ajax.users.php 1 addition, 0 deletionsinclude/ajax.users.php
- include/class.dynamic_forms.php 4 additions, 0 deletionsinclude/class.dynamic_forms.php
- include/class.forms.php 15 additions, 0 deletionsinclude/class.forms.php
- include/client/header.inc.php 1 addition, 1 deletioninclude/client/header.inc.php
- include/client/view.inc.php 2 additions, 2 deletionsinclude/client/view.inc.php
- include/staff/templates/user-lookup.tmpl.php 2 additions, 2 deletionsinclude/staff/templates/user-lookup.tmpl.php
- include/staff/templates/user.tmpl.php 3 additions, 3 deletionsinclude/staff/templates/user.tmpl.php
- include/staff/ticket-edit.inc.php 1 addition, 1 deletioninclude/staff/ticket-edit.inc.php
- include/staff/ticket-view.inc.php 5 additions, 4 deletionsinclude/staff/ticket-view.inc.php
- include/staff/tickets.inc.php 1 addition, 1 deletioninclude/staff/tickets.inc.php
Loading
Please register or sign in to comment