From c42f09c39a3439856ef7de5f794ca645043e44e9 Mon Sep 17 00:00:00 2001
From: Joe Bordes <joe@tsolucio.com>
Date: Sat, 27 Nov 2021 19:39:35 +0100
Subject: [PATCH] sec(ListView) Improper Neutralization of output

---
 include/ListView/ListViewController.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/include/ListView/ListViewController.php b/include/ListView/ListViewController.php
index 1d37ad9d63..0bea5b0c80 100644
--- a/include/ListView/ListViewController.php
+++ b/include/ListView/ListViewController.php
@@ -572,6 +572,7 @@ function ($m) {
 					$nameFieldList = explode(',', $nameFields);
 					if (($fieldName == $focus->list_link_field || in_array($fieldName, $nameFieldList)) && $module != 'Emails') {
 						$opennewtab = GlobalVariable::getVariable('Application_OpenRecordInNewXOnListView', '', $module);
+						$value = trim(gtltTagsToHTML($value));
 						if ($opennewtab=='') {
 							$value = "<a href='index.php?module=$module&action=DetailView&record=".
 								"$recordId' title='".getTranslatedString($module, $module)."'>$value</a>";