Digitalstack/myaac
2
0
Fork 0
mirror of https://github.com/slawkens/myaac.git synced 2025-05-02 12:19:20 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix XSS in accounts editor

Browse Source
This commit is contained in:
slawkens 2023-09-16 10:19:54 +02:00
parent 08339fe8b6
commit 55b5e3b600
1 changed files with 1 additions and 1 deletions

2
admin/pages/accounts.php

@ -583,7 +583,7 @@ else if (isset($_REQUEST['search'])) {
<form action="<?php echo $admin_base; ?>" method="post"> <form action="<?php echo $admin_base; ?>" method="post">
<label for="name">Account Name:</label> <label for="name">Account Name:</label>
<div class="input-group input-group-sm"> <div class="input-group input-group-sm">
<input type="text" class="form-control" name="search" value="<?php echo $search_account; ?>" maxlength="32" size="32"> <input type="text" class="form-control" id="search" name="search" value="<?= escapeHtml($search_account); ?>" maxlength="32" size="32">
<span class="input-group-append"><button type="submit" class="btn btn-info btn-flat">Search</button></span> <span class="input-group-append"><button type="submit" class="btn btn-info btn-flat">Search</button></span>
</div> </div>
</form> </form>