CVE-2023-4157: Escape installation title when displaying · omeka/omeka-s@8b72619

Skip to content

• • Actions

    Automate any workflow

  • Packages

    Host and manage packages

  • Security

    Find and fix vulnerabilities

  • Codespaces

    Instant dev environments

  • Copilot

    Write better code with AI

  • Code review

    Manage code changes

  • Issues

    Plan and track work

  • Discussions

    Collaborate outside of code

• • GitHub Sponsors

    Fund open source developers

*   The ReadME Project
    
    GitHub community articles

• Pricing

Search code, repositories, users, issues, pull requests…

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

• Notifications

• Fork 109

• Code

• Issues 53

• Pull requests 63

• Actions

• Projects

• Wiki

• Security

• Insights

Commit

Permalink

Browse files

Browse the repository at this point in the history

Escape installation title when displaying

(cherry picked from commit ca84d69)

• Loading branch information

Showing 3 changed files with 3 additions and 3 deletions.

• • • layout-admin.phtml
  • • • browse.phtml
    • • index.phtml

2 changes: 1 addition & 1 deletion application/view/layout/layout-admin.phtml

Expand Up

@@ -37,7 +37,7 @@ $this->trigger(‘view.layout’);

<a href="#content" class="skip"><?php echo $translate(‘Skip to main content’); ?></a>

<div class="flex">

<header>

<div class="logo"><a href="<?php echo $this->url(‘admin’); ?>"><?php echo $this->setting('installation_title’, ‘Omeka S’); ?></a></div>

<div class="logo"><a href="<?php echo $this->url(‘admin’); ?>"><?php echo $escape($this->setting('installation_title’, ‘Omeka S’)); ?></a></div>

<div id="mobile-nav">

<a href="#" class="o-icon-menu button"><span class="screen-reader-text"><?php echo $translate(‘Navigation menu’); ?></span></a>

<a href="#" class="o-icon-search button"><span class="screen-reader-text"><?php echo $translate(‘Search site’); ?></span></a>

Expand Down

2 changes: 1 addition & 1 deletion application/view/omeka/admin/index/browse.phtml

Expand Up

@@ -6,7 +6,7 @@ echo $this->pageTitle($translate(‘Admin dashboard’));

<div id="dashboard">

<?php echo $this->partial(‘common/version-notification’); ?>

<p><?php echo sprintf($translate(‘Welcome to the %s admin dashboard!’), $title); ?></p>

<p><?php echo sprintf($translate(‘Welcome to the %s admin dashboard!’), $this->escapeHtml($title)); ?></p>

<?php $this->trigger(‘view.browse.before’); ?>

<div id="manage-resources" class="panel">

<h2><?php echo $translate(‘Manage resources’); ?></h2>

Expand Down

2 changes: 1 addition & 1 deletion application/view/omeka/index/index.phtml

Expand Up

@@ -31,5 +31,5 @@ endforeach;

<p><?php echo sprintf(

$translate(‘Go to the %1$s to start working with %2$s.’),

$this->hyperlink($translate(‘Admin dashboard’), $this->url(‘admin’)),

$title

$this->escapeHtml($title)

); ?></p>

0 comments on commit 8b72619

Please sign in to comment.