From a5faa005f22bad9dc9da15a8433da7c5e8157403 Mon Sep 17 00:00:00 2001
From: Ahmad Gneady <support@bigprof.com>
Date: Thu, 1 Jul 2021 20:59:29 +0200
Subject: [PATCH] Fix low severity stored XSS vulnerability in
 `admin/pageViewMembers.php`

---
 app/admin/pageViewMembers.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/app/admin/pageViewMembers.php b/app/admin/pageViewMembers.php
index 89ab802..b696c6d 100644
--- a/app/admin/pageViewMembers.php
+++ b/app/admin/pageViewMembers.php
@@ -160,8 +160,8 @@
 			<?php } else { ?>
 				<td class="text-left"><a href="pageEditMember.php?memberID=<?php echo $row[0]; ?>"><?php echo $row[0]; ?></a></td>
 			<?php } ?>
-			<td class="text-left"><?php echo $row[1]; ?></td>
-			<td class="text-left"><?php echo $row[2]; ?></td>
+			<td class="text-left"><?php echo htmlspecialchars($row[1]); ?></td>
+			<td class="text-left"><?php echo htmlspecialchars($row[2]); ?></td>
 			<td class="text-left"><?php echo htmlspecialchars($row[3]); ?></td>
 			<td class="text-left"><?php echo htmlspecialchars($row[4]); ?></td>
 			<td class="text-left"><?php echo htmlspecialchars($row[5]); ?></td>