This is an automated email from the ASF dual-hosted git repository. brushed pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/jspwiki.git
commit 75019d337f1d0033b1f65428e75f43baeffd99dd Author: brushed <[email protected]> AuthorDate: Thu Nov 24 10:24:33 2022 +0100 XSS vulnerability reported by Eugene Lim and Sng Jay Kai. --- jspwiki-war/src/main/webapp/templates/default/Header.jsp | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/jspwiki-war/src/main/webapp/templates/default/Header.jsp b/jspwiki-war/src/main/webapp/templates/default/Header.jsp index bf5f006a0..51fc9c608 100644 --- a/jspwiki-war/src/main/webapp/templates/default/Header.jsp +++ b/jspwiki-war/src/main/webapp/templates/default/Header.jsp @@ -55,10 +55,10 @@ <c:choose> <c:when test="${not empty fn:substringBefore(param.page,'_blogentry_')}"> - <wiki:Link>${fn:replace(fn:replace(param.page,'_blogentry_',' ['),'_','#')}]</wiki:Link> + <wiki:Link><c:out value="${fn:replace(fn:replace(param.page,'_blogentry_',' ['),'_','#')}"/>]</wiki:Link> </c:when> <c:when test="${not empty fn:substringBefore(param.page,'_comments_')}"> - <wiki:Link>${fn:replace(fn:replace(param.page,'_comments_',' ['),'_','#')}]</wiki:Link> + <wiki:Link><c:out value="${fn:replace(fn:replace(param.page,'_comments_',' ['),'_','#')}"/>"]</wiki:Link> </c:when> <c:otherwise><a href="#top" tabindex="-1"><wiki:PageName /></a></c:otherwise> </c:choose>
