Changeset 161
- Timestamp:
- 08/31/06 14:59:39 (2 years ago)
- Files:
-
- trunk/webmin/lbs_common/lbs_common.pl (modified) (1 diff)
- trunk/webmin/lbs_common/lbs_common_priv.pl (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
trunk/webmin/lbs_common/lbs_common.pl
r143 r161 228 228 $in{'mac'} = $params->{'mac'} if !$in{'mac'}; 229 229 230 my $host = $in{'host'};231 my $group = $in{'group'};232 my $profile = $in{'profile'};230 my $host = html_escape($in{'host'}); 231 my $group = html_escape($in{'group'}); 232 my $profile = html_escape($in{'profile'}); 233 233 my %menu; 234 235 $in{'mac'} = html_escape($in{'mac'}); 234 236 235 237 # when coming from some modules (backuppc f.ex.), the mac adress trunk/webmin/lbs_common/lbs_common_priv.pl
r131 r161 17 17 if ($in{group}) { 18 18 my $c = new CGI::Cookie(-name => 'group', 19 -value => "$in{group}",19 -value => html_escape($in{group}), 20 20 -expires => '+1M' 21 21 ); … … 25 25 if ($in{profile} || $in{profile} eq "") { 26 26 my $c = new CGI::Cookie(-name => 'profile', 27 -value => "$in{profile}",27 -value => html_escape($in{profile}), 28 28 -expires => '+1M' 29 29 ); … … 42 42 if (!$in{'group'}) { 43 43 if ( defined($cookies{'group'}) ) { 44 $in{'group'} = $cookies{'group'}->value;44 $in{'group'} = html_escape($cookies{'group'}->value); 45 45 } 46 46 } 47 47 if (! defined($in{'profile'}) ) { 48 48 if ( defined($cookies{'profile'}) ) { 49 $in{'profile'} = $cookies{'profile'}->value;49 $in{'profile'} = html_escape($cookies{'profile'}->value); 50 50 } 51 51 }
