github/plexpy
1
0
Fork 0
mirror of https://github.com/Tautulli/Tautulli.git synced 2025-07-08 06:00:51 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #334 from drzoidberg33/security-fixes

Browse source 
Escape input on friendy_name change.
This commit is contained in:
drzoidberg33 2015-12-06 14:41:31 +02:00
commit a1f18bc133
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
data/interfaces/default/edit_user.html
View file

@ -115,7 +115,7 @@ DOCUMENTATION :: END
success: function(data) {
$("#edit-user-status-message").html(data);
if ($.trim(friendly_name) !== '') {
$(".set-username").html(friendly_name);
$('.set-username').html(document.createTextNode(friendly_name));
}
$("#user-profile-thumb").attr('src', thumb);
}