From 46f099ed0c4742c09b8e9ee3c357d1a92fece5bd Mon Sep 17 00:00:00 2001 From: Erich Eckner Date: Tue, 15 Jan 2019 15:33:31 +0100 Subject: buildmaster/mysql-issues.php: html-encode the install_targets - they may contain <>... --- buildmaster/mysql-issues.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/buildmaster/mysql-issues.php b/buildmaster/mysql-issues.php index 744f122..0c27608 100644 --- a/buildmaster/mysql-issues.php +++ b/buildmaster/mysql-issues.php @@ -94,7 +94,7 @@ require_once BASE . "/lib/mysql.php"; print " (marked as to-be-deleted) "; else print " "; - print $row["pkgfile"] . " depends on " . $row["install_target"] . " which is not provided by any package"; + print $row["pkgfile"] . " depends on " . htmlspecialchars($row["install_target"]) . " which is not provided by any package"; if (isset($row["subst_repository"])) print " - but can be replaced by the one in " . $row["subst_repository"]; elseif (isset($row["subst_buildlist"])) @@ -175,7 +175,7 @@ require_once BASE . "/lib/mysql.php"; print " (marked as to-be-deleted) "; else print " "; - print $row["pkgfile"] . " depends on " . $row["install_target"] . " which is not provided by any package installable from enabled " . $row["stability"] . " repositories.
"; + print $row["pkgfile"] . " depends on " . htmlspecialchars($row["install_target"]) . " which is not provided by any package installable from enabled " . $row["stability"] . " repositories.
"; print "
\n"; unset($row); } -- cgit v1.2.3-70-g09d2