Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
more strict output sanitizing in block placement management view
  • Loading branch information
Guite committed Jan 18, 2022
1 parent 33ede73 commit 4f4d5d6
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions CHANGELOG-3.0.md
Expand Up @@ -7,6 +7,7 @@

- Fixes:
- [Admin] Sanitize extension title in admin panel.
- [Blocks] Sanitize block title and description in position placement management view.
- [ZAuth] Generic response message in lost password functionality to avoid account enumeration.

- Features:
Expand Down
Expand Up @@ -50,7 +50,7 @@
<td headers="hAssignedDnd"><span class="fas fa-arrows-alt"></span></td>
<td headers="hAssignedId">{{ block.bid }}</td>
<td headers="hAssignedTitle" id="blockdrag_{{ block.bid }}">
{{ block.title|safeHtml|default('') }}{% if block.title and block.description %},&nbsp;{% endif %}{{ block.description|safeHtml }}
{{ block.title|default('') }}{% if block.title and block.description %},&nbsp;{% endif %}{{ block.description }}
</td>
<td headers="hAssignedModule">{{ block.module.name }}</td>
<td headers="hAssignedType">{{ block.blocktype }}</td>
Expand Down

0 comments on commit 4f4d5d6

Please sign in to comment.