diff options
| author | jim-p <jimp@netgate.com> | 2019-06-13 13:09:36 -0400 |
|---|---|---|
| committer | jim-p <jimp@netgate.com> | 2019-06-13 13:10:04 -0400 |
| commit | 9357ffe380b5eb5280ad58a596d7eb41963c58e6 (patch) | |
| tree | 34a6f577615242037f654a94466366cdcbadec51 | |
| parent | b9e689cf5bc21fd7e19b1cde5bf38229b72dde2b (diff) | |
| download | pfsense-9357ffe380b5eb5280ad58a596d7eb41963c58e6.zip pfsense-9357ffe380b5eb5280ad58a596d7eb41963c58e6.tar.gz | |
Encode hostname in services_acb.php before use. Fixes #9584
(cherry picked from commit fe482ccc1eaf59137b29008bc040faaad25088f0)
| -rw-r--r-- | src/usr/local/www/services_acb.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/usr/local/www/services_acb.php b/src/usr/local/www/services_acb.php index 054eef3..04e51c0 100644 --- a/src/usr/local/www/services_acb.php +++ b/src/usr/local/www/services_acb.php @@ -507,7 +507,7 @@ if (!$legacy) { </option> <?endforeach?> <? if ($host_not_found) { ?> - <option value='<?=$hostname?>' SELECTED><?=$hostname?></option> + <option value='<?=urlencode($hostname)?>' SELECTED><?=htmlspecialchars($hostname)?></option> <? } ?> </select> <?php } |
