[SECURITY] Prevent XSS in scheduler form 55/29155/2
authorNicole Cordes <typo3@cordes.co>
Fri, 4 Apr 2014 11:12:25 +0000 (13:12 +0200)
committerNicole Cordes <typo3@cordes.co>
Fri, 4 Apr 2014 11:19:42 +0000 (13:19 +0200)
commit9d3651526951193944a02d7d522e047fe3655998
treea5719eec9d5d704b3fa85cb6386a50991dcbf94e
parente34a90bded50d2617344eeaada4d4235e789669b
[SECURITY] Prevent XSS in scheduler form

The class name is submitted in a hidden form and is susceptible to XSS.
The patch introduced htmlspecialchars to prevent XSS possibility.

Resolves: #57603
Releases: 6.2, 6.1, 6.0, 4.7, 4.5
Change-Id: I4979e66f28a581e168c56d91327a1bbe2672448d
Reviewed-on: https://review.typo3.org/29155
Reviewed-by: Nicole Cordes
Tested-by: Nicole Cordes
typo3/sysext/scheduler/mod1/index.php