mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

prevent xss attacks by manipulating image file names

This commit is contained in:
Bjoern Schiessle 2012-06-04 16:22:25 +02:00
parent 1d6ca084a6
commit f291a843bf
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
apps/files_imageviewer/js/lightbox.js
View File

@ -25,7 +25,7 @@ function viewImage(dir, file) {
var location=OC.filePath('files','ajax','download.php')+'?files='+file+'&dir='+dir;
$.fancybox({
"href": location,
"title": file,
"title": file.replace(/</, "&lt;").replace(/>/, "&gt;"),
"titlePosition": "inside"
});
}