fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-07 10:41:40 +09:00
Code Issues Projects Releases Packages Wiki Activity

Fix XSS in documentModel->getExtraVarsHTML()

Browse source 
16e8158
This commit is contained in:
Kijin Sung 2018-10-08 17:46:47 +09:00
parent 33e44b8708
commit 7bdcaba8ce
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
modules/document/document.model.php
View file

@ -903,7 +903,7 @@ class documentModel extends document
$extra_keys = $this->getExtraKeys($module_srl);
Context::set('extra_keys', $extra_keys);
$security = new Security();
$security->encodeHTML('extra_keys..');
$security->encodeHTML('extra_keys..', 'selected_var_idx');
// Get information of module_grants
$oTemplate = &TemplateHandler::getInstance();