nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2025-12-30 00:53:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Escape user data on conference_profile_edit.php (#3098)

Browse Source
This commit is contained in:
AlexanderDCrane
2018-06-09 11:39:29 -06:00
committed by FusionPBX
parent 43578cacde
commit 4de22df2f5
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/conference_profiles/conference_profile_edit.php
View File

@@ -142,7 +142,7 @@
echo " ".$text['label-profile_name']."\n";
echo "</td>\n";
echo "<td class='vtable' align='left'>\n";
echo " <input class='formfld' type='text' name='profile_name' maxlength='255' value=\"$profile_name\">\n";
echo " <input class='formfld' type='text' name='profile_name' maxlength='255' value=\"".escape($profile_name)."\">\n";
echo "<br />\n";
echo $text['description-profile_name']."\n";
echo "</td>\n";
@@ -178,7 +178,7 @@
echo " ".$text['label-profile_description']."\n";
echo "</td>\n";
echo "<td class='vtable' align='left'>\n";
echo " <input class='formfld' type='text' name='profile_description' maxlength='255' value=\"$profile_description\">\n";
echo " <input class='formfld' type='text' name='profile_description' maxlength='255' value=\"".escape($profile_description)."\">\n";
echo "<br />\n";
echo $text['description-profile_description']."\n";
echo "</td>\n";
@@ -186,7 +186,7 @@
echo " <tr>\n";
echo " <td colspan='2' align='right'>\n";
if ($action == "update") {
echo " <input type='hidden' name='conference_profile_uuid' value='$conference_profile_uuid'>\n";
echo " <input type='hidden' name='conference_profile_uuid' value='".escape($conference_profile_uuid)."'>\n";
}
echo " <input type='submit' name='submit' class='btn' value='".$text['button-save']."'>\n";
echo " </td>\n";