Merge pull request #35 from silverstripe-security/patch/3.1/ss-2016-016

[SS-2016-016] FIX Properly escape backURL for template injection
2024-10-22 12:05:37 +00:00 · 2016-11-15 11:11:38 +00:00 · 2016-11-15 11:11:38 +00:00 · 6b123fe1c9
commit 6b123fe1c9
parent 8336cb96b9 17097a4d11
1 changed files with 1 additions and 1 deletions
--- a/security/CMSSecurity.php
+++ b/security/CMSSecurity.php
@ -204,7 +204,7 @@ PHP
 				'<p>Login success. If you are not automatically redirected '.
 				'<a target="_top" href="{link}">click here</a></p>',
 				'Login message displayed in the cms popup once a user has re-authenticated themselves',
-				array('link' => $backURL)
+				array('link' => Convert::raw2att($backURL))
 			)
 		));