mirror of
https://github.com/Part-DB/Part-DB-server.git
synced 2025-07-12 03:14:32 +02:00
Fixed potential XSS injection vectors in datatables columns
This commit is contained in:
parent
5f39d8e594
commit
83cd91f1d1
6 changed files with 10 additions and 10 deletions
|
@ -193,7 +193,7 @@ class LogEntryExtraFormatter
|
|||
}
|
||||
if ($context->getInstockChangeType() === PartStockChangedLogEntry::TYPE_MOVE) {
|
||||
$array['log.part_stock_changed.move_target'] =
|
||||
$this->elementTypeNameGenerator->getLocalizedTypeLabel(PartLot::class)
|
||||
htmlspecialchars($this->elementTypeNameGenerator->getLocalizedTypeLabel(PartLot::class))
|
||||
.' ' . $context->getMoveToTargetID();
|
||||
}
|
||||
}
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue