r114683 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r114682‎ \| r114683 \| r114684 >
Date:	17:53, 3 April 2012
Author:	reedy
Status:	ok
Tags:
Comment:	Bug 35673 - XSS vulnerability in mobile search
Modified paths:	/branches/wmf/1.19wmf1/extensions/MobileFrontend/templates/SearchTemplate.php (modified) (history)

Diff [purge]

Index: branches/wmf/1.19wmf1/extensions/MobileFrontend/templates/SearchTemplate.php
—	—	@@ -8,14 +8,14 @@
9	9
10	10	public function getHTML() {
11	11
12		~~- $searchField = Xml::escapeJsString( $this->data['searchField'] );~~
	12	+ $searchField = Sanitizer::encodeAttribute( $this->data['searchField'] );
13	13	$mainPageUrl = $this->data['mainPageUrl'];
14	14	$randomPageUrl = $this->data['randomPageUrl'];
15	15	$homeButton = $this->data['messages']['mobile-frontend-home-button'];
16	16	$randomButton = $this->data['messages']['mobile-frontend-random-button'];
17		~~- $clearText = Xml::escapeJsString( $this->data['messages']['mobile-frontend-clear-search'] );~~
	17	+ $clearText = Sanitizer::encodeAttribute( $this->data['messages']['mobile-frontend-clear-search'] );
18	18	$searchValue = $this->data['messages']['mobile-frontend-search-submit'];
19		~~- $placeholder = Xml::escapeJsString( $this->data['messages']['mobile-frontend-placeholder'] );~~
	19	+ $placeholder = Sanitizer::encodeAttribute( $this->data['messages']['mobile-frontend-placeholder'] );
20	20
21	21	$scriptUrl = wfScript();
22	22	$searchBoxDisplayNone = ( $this->data['hideSearchBox'] ) ? ' style="display: none;" ' : '';

Past revisions this follows-up on

Revision	Commit summary	Author	Date
r114191	htmlspecialchars -> Xml::escapeJsString	awjrichards	21:37, 19 March 2012

Status & tagging log

18:03, 3 April 2012 Preilly (talk | contribs) changed the status of r114683 [removed: new added: ok]