CC-4894: Need to filter output for potential XSS exploits

-fixed few areas
2013-01-29 15:17:29 -05:00 · 2013-01-29 15:17:29 -05:00 · b15c4569eb
commit b15c4569eb
parent 9d4e0d2dd1
9 changed files with 20 additions and 9 deletions
--- a/airtime_mvc/application/layouts/scripts/layout.phtml
+++ b/airtime_mvc/application/layouts/scripts/layout.phtml
@ -24,7 +24,7 @@
    <div class="personal-block solo">
        <ul>
          <li>
-            <a id="current-user" href=<?php echo $baseUrl . "User/edit-user"?>><span class="name"><?php echo $this->loggedInAs()?></span></a> | <a href=<?php echo $baseUrl . "Login/logout"?>><?php echo _("Logout")?></a>
+            <a id="current-user" href=<?php echo $baseUrl . "User/edit-user"?>><span class="name"><?php echo $this->escape($this->loggedInAs()); ?></span></a> | <a href=<?php echo $baseUrl . "Login/logout"?>><?php echo _("Logout")?></a>
          </li>
        </ul>
    </div>