From aba331d0a46b6c911ffbef9e53b7c212c264e51e Mon Sep 17 00:00:00 2001
From: Seth <seth@collectiveaccess.org>
Date: Fri, 24 Sep 2021 14:26:14 -0400
Subject: [PATCH] Remove link display to present XSS

---
 app/helpers/displayHelpers.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/app/helpers/displayHelpers.php b/app/helpers/displayHelpers.php
index aa2bcd59f4..f79f982789 100644
--- a/app/helpers/displayHelpers.php
+++ b/app/helpers/displayHelpers.php
@@ -1023,9 +1023,9 @@ function caEditorInspector($po_view, $pa_options=null) {
 							break;
 					}
 				}
-			
-				
-				$vs_buf .= "<div class='recordTitle {$vs_table_name}' style='width:190px; overflow:hidden;'>{$vs_label}".(($vb_show_idno) ? "<a title='$vs_idno'>".($vs_idno ? " ({$vs_idno})" : '') : "")."</a></div>";
+
+				$vs_buf .= "<div class='recordTitle {$vs_table_name}' style='width:190px; overflow:hidden;'>{$vs_label}".(($vb_show_idno) ? ($vs_idno ? " ({$vs_idno})" : '') : '')."</div>";
+
 				if (($vs_table_name === 'ca_object_lots') && $t_item->getPrimaryKey()) {
 					$vs_buf .= "<div id='inspectorLotMediaDownload'><strong>".((($vn_num_objects = $t_item->numObjects(null, ['excludeChildObjects' => $po_view->request->config->get("exclude_child_objects_in_inspector_log_count")])) == 1) ? _t('Lot contains %1 object', $vn_num_objects) : _t('Lot contains %1 objects', $vn_num_objects))."</strong>\n";
 				}