From f66a7f0f72e5f44a868d2eff3f916526d5465323 Mon Sep 17 00:00:00 2001
From: Peter Rotich <peter@enhancesoft.com>
Date: Wed, 22 Aug 2018 02:54:16 +0000
Subject: [PATCH] footer: htmlchars company name
---
include/client/footer.inc.php | 3 ++-
include/staff/footer.inc.php | 3 ++-
2 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/include/client/footer.inc.php b/include/client/footer.inc.php
index 37369a7d3..6ff20f28a 100644
--- a/include/client/footer.inc.php
+++ b/include/client/footer.inc.php
@@ -1,7 +1,8 @@
</div>
</div>
<div id="footer">
- <p><?php echo __('Copyright ©'); ?> <?php echo date('Y'); ?> <?php echo (string) $ost->company ?: 'osTicket.com'; ?> - <?php echo __('All rights reserved.'); ?></p>
+ <p><?php echo __('Copyright ©'); ?> <?php echo date('Y'); ?> <?php
+ echo Format::htmlchars((string) $ost->company ?: 'osTicket.com'); ?> - <?php echo __('All rights reserved.'); ?></p>
<a id="poweredBy" href="http://osticket.com" target="_blank"><?php echo __('Helpdesk software - powered by osTicket'); ?></a>
</div>
<div id="overlay"></div>
diff --git a/include/staff/footer.inc.php b/include/staff/footer.inc.php
index 8ab46960a..2376cf96e 100644
--- a/include/staff/footer.inc.php
+++ b/include/staff/footer.inc.php
@@ -2,7 +2,8 @@
</div>
<?php if (!isset($_SERVER['HTTP_X_PJAX'])) { ?>
<div id="footer">
- <?php echo __('Copyright ©') ?> 2006-<?php echo date('Y'); ?> <?php echo (string) $ost->company ?: 'osTicket.com'; ?> <?php echo __('All Rights Reserved.'); ?>
+ <?php echo __('Copyright ©') ?> 2006-<?php echo date('Y'); ?> <?php
+ echo Format::htmlchars((string) $ost->company ?: 'osTicket.com'); ?> <?php echo __('All Rights Reserved.'); ?>
</div>
<?php
if(is_object($thisstaff) && $thisstaff->isStaff()) { ?>
--
GitLab