Headline
CVE-2023-3071: sec(Picklist) sanitize picklist values · tsolucio/corebos@5e87fbc
Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8.
Expand Up
@@ -37,7 +37,7 @@
$id = $adb->getUniqueID(“vtiger_$tableName”);
$picklist_valueid = getUniquePicklistID();
$sql = "insert into vtiger_$tableName values (?,?,?,?)";
$adb->pquery($sql, array($id, $val, 1, $picklist_valueid));
$adb->pquery($sql, array($id, vtlib_purify($val), 1, $picklist_valueid));
//add the picklist values to the selected roles
foreach ($roles as $roleid) {
$sql ="select max(sortid)+1 as sortid
Expand Down