[PHP-WEBMASTER] [web-wiki] master: Upgrade to 2025-05-14b-librarian due to XSS security update

Derick Rethans Wed, 10 Sep 2025 08:16:12 -0700

Author: Derick Rethans (derickr)
Date: 2025-09-10T10:08:01+01:00

Commit: 
https://github.com/php/web-wiki/commit/b9c825ea6cf07290102fe2c6e7b30a5305319787
Raw diff: 
https://github.com/php/web-wiki/commit/b9c825ea6cf07290102fe2c6e7b30a5305319787.diff


Upgrade to 2025-05-14b-librarian due to XSS security update

Changed paths:
  M  dokuwiki/inc/Ui/Search.php


Diff:

diff --git a/dokuwiki/inc/Ui/Search.php b/dokuwiki/inc/Ui/Search.php
index 62a25404..a26bfc93 100644
--- a/dokuwiki/inc/Ui/Search.php
+++ b/dokuwiki/inc/Ui/Search.php
@@ -302,7 +302,7 @@ protected function addNamespaceSelector(Form $searchForm)
         $currentWrapper = $searchForm->addTagOpen('div')->addClass('current');
         if ($baseNS) {
             $currentWrapper->addClass('changed');
-            $searchForm->addHTML('@' . $baseNS);
+            $searchForm->addHTML('@' . hsc($baseNS));
         } else {
             $searchForm->addHTML($lang['search_any_ns']);
         }
@@ -323,7 +323,7 @@ protected function addNamespaceSelector(Form $searchForm)
 
         foreach ($extraNS as $ns => $count) {
             $listItem = $searchForm->addTagOpen('li');
-            $label = $ns . ($count ? " <bdi>($count)</bdi>" : '');
+            $label = hsc($ns) . ($count ? " <bdi>($count)</bdi>" : '');
 
             if ($ns === $baseNS) {
                 $listItem->addClass('active');

[PHP-WEBMASTER] [web-wiki] master: Upgrade to 2025-05-14b-librarian due to XSS security update

Reply via email to