RVE-2024-1 missing escape of autogenerated document title

2026-01-05 09:41:40 +09:00 · 2024-01-20 00:39:19 +09:00 · 2024-01-20 00:39:19 +09:00 · a3650bb899
commit a3650bb899
parent 40b3dcd5f0
1 changed files with 1 additions and 1 deletions
--- a/modules/document/document.controller.php
+++ b/modules/document/document.controller.php
@ -750,7 +750,7 @@ class DocumentController extends Document
 		$obj->title = escape($obj->title, false);
 		if($obj->title == '')
 		{
-			$obj->title = cut_str(trim(strip_tags(nl2br($obj->content))),20,'...');
+			$obj->title = escape(cut_str(trim(utf8_normalize_spaces(strip_tags($obj->content))), 20, '...'), false);
 		}
 		if($obj->title == '')
 		{