From 2c65eb4bae2e48089d9f44d39a7d2127ac59426c Mon Sep 17 00:00:00 2001 From: inga-lovinde <52715130+inga-lovinde@users.noreply.github.com> Date: Sat, 21 Apr 2012 02:14:33 +0400 Subject: [PATCH] Fixed a critical XSS vulnerability --- FLocal.Common/BBCodes/helpers/BBCode.cs | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/FLocal.Common/BBCodes/helpers/BBCode.cs b/FLocal.Common/BBCodes/helpers/BBCode.cs index 4328aae..240437b 100644 --- a/FLocal.Common/BBCodes/helpers/BBCode.cs +++ b/FLocal.Common/BBCodes/helpers/BBCode.cs @@ -28,7 +28,7 @@ namespace FLocal.Common.BBCodes { if(result == null || result == "") { return null; } - return result; + return this.Safe(result); } } @@ -36,7 +36,7 @@ namespace FLocal.Common.BBCodes { get { string result = this.Default; if(result == null) { - result = this.InnerText; + result = this.Safe(this.InnerText); } return result; }