From: Jonathan A. <jan...@us...> - 2003-01-24 02:14:59
|
Update of /cvsroot/squirrelmail/squirrelmail/functions In directory sc8-pr-cvs1:/tmp/cvs-serv11282 Modified Files: Tag: SM-1_2-STABLE mailbox_display.php Log Message: XSS fix in From: field Index: mailbox_display.php =================================================================== RCS file: /cvsroot/squirrelmail/squirrelmail/functions/mailbox_display.php,v retrieving revision 1.243.2.9 retrieving revision 1.243.2.10 diff -u -w -r1.243.2.9 -r1.243.2.10 --- mailbox_display.php 7 Nov 2002 12:02:08 -0000 1.243.2.9 +++ mailbox_display.php 24 Jan 2003 02:14:55 -0000 1.243.2.10 @@ -59,7 +59,7 @@ if ($senderName != '') { $senderName .= ', '; } - $senderName .= sqimap_find_displayable_name($senderNames_part); + $senderName .= htmlentities(sqimap_find_displayable_name($senderNames_part)); } } |