RVE-2024-1 also apply escape() when updating document

2026-01-03 16:51:40 +09:00 · 2024-01-30 20:43:39 +09:00 · 2024-01-30 20:43:39 +09:00 · 7cb9b8c786
commit 7cb9b8c786
parent 1854700e77
1 changed files with 1 additions and 1 deletions
--- a/modules/document/document.controller.php
+++ b/modules/document/document.controller.php
@ -1049,7 +1049,7 @@ class DocumentController extends Document
 		$obj->title = escape($obj->title, false);
 		if($obj->title == '')
 		{
-			$obj->title = cut_str(strip_tags($obj->content),20,'...');
+			$obj->title = escape(cut_str(trim(utf8_normalize_spaces(strip_tags($obj->content))), 20, '...'), false);
 		}
 		if($obj->title == '')
 		{