Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack of encoding by YUI

[r=mkanat r=dkl a=LpSolit]

Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack of encoding by YUI
c283f5e7 · Reed Loden · fee4dfba · c283f5e7
Commit c283f5e7 authored Jan 24, 2011 by Reed Loden
Show whitespace changes
Inline Side-by-side

Showing with 8 additions and 1 deletion

field.js js/field.js +8 -1

No files found.
--- a/js/field.js
+++ b/js/field.js
@@ -661,6 +661,13 @@ function browserCanHideOptions(aSelect) {

 /* (end) option hiding code */

+// A convenience function to sanitize raw text for harmful HTML before outputting
+function _escapeHTML(text) {
+    return text.replace(/&/g, '&amp;').
+                replace(/</g, '&lt;').
+                replace(/>/g, '&gt;');
+}
+
 /**
 * The Autoselect
 */
@@ -686,7 +693,7 @@ YAHOO.bugzilla.userAutocomplete = {
      return stringified;
    },
    resultListFormat : function(oResultData, enteredText, sResultMatch) {
-        return ( oResultData.real_name + " (" +  oResultData.email + ")");
+        return ( _escapeHTML(oResultData.real_name) + " (" +  _escapeHTML(oResultData.email) + ")");
    },
    debug_helper : function ( ){
        /* used to help debug any errors that might happen */