Fixed bug #8019: missing htmlspecialchars() in adminPanel
authorIngmar Schlecht <ingmar.schlecht@typo3.org>
Sun, 20 Apr 2008 11:50:51 +0000 (11:50 +0000)
committerIngmar Schlecht <ingmar.schlecht@typo3.org>
Sun, 20 Apr 2008 11:50:51 +0000 (11:50 +0000)
git-svn-id: https://svn.typo3.org/TYPO3v4/Core/trunk@3596 709f56b5-9817-0410-a4d7-c38de5d9e867

ChangeLog
t3lib/class.t3lib_tsfebeuserauth.php

index 1d85495..58a145b 100755 (executable)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,6 +1,7 @@
 2008-04-20  Ingmar Schlecht  <ingmar@typo3.org>
 
        * Fixed bug #8138: Search in Loaded Extensions not working (Thanks to Steffen Kamper)
+       * Fixed bug #8019: missing htmlspecialchars() in adminPanel (Thanks to Steffen Kamper)
 
 2008-04-20  Ingo Renner  <ingo@typo3.org>
 
index 3a4fcbb..8f78b6d 100755 (executable)
@@ -336,7 +336,7 @@ $query.'
                        $depth = $this->extGetFeAdminValue('cache','clearCacheLevels');
                        $outTable = '';
                        $this->extPageInTreeInfo = array();
-                       $this->extPageInTreeInfo[] = array($GLOBALS['TSFE']->page['uid'],$GLOBALS['TSFE']->page['title'],$depth+1);
+                       $this->extPageInTreeInfo[] = array($GLOBALS['TSFE']->page['uid'],htmlspecialchars($GLOBALS['TSFE']->page['title']),$depth+1);
                        $this->extGetTreeList($GLOBALS['TSFE']->id, $depth,0,$this->getPagePermsClause(1));
                        reset($this->extPageInTreeInfo);
                        while(list(,$row)=each($this->extPageInTreeInfo)) {
@@ -377,7 +377,7 @@ $query.'
                        $depth = $this->extGetFeAdminValue('publish','levels');
                        $outTable = '';
                        $this->extPageInTreeInfo = array();
-                       $this->extPageInTreeInfo[] = array($GLOBALS['TSFE']->page['uid'],$GLOBALS['TSFE']->page['title'],$depth+1);
+                       $this->extPageInTreeInfo[] = array($GLOBALS['TSFE']->page['uid'],htmlspecialchars($GLOBALS['TSFE']->page['title']),$depth+1);
                        $this->extGetTreeList($GLOBALS['TSFE']->id, $depth,0,$this->getPagePermsClause(1));
                        reset($this->extPageInTreeInfo);
                        while(list(,$row)=each($this->extPageInTreeInfo)) {