diff options
| author | Sfan5 <sfan5@live.de> | 2013-08-07 09:20:36 +0200 |
|---|---|---|
| committer | Sfan5 <sfan5@live.de> | 2013-08-07 09:24:32 +0200 |
| commit | 8b9bf47166a9527a5b547200160a43f2924f5ab5 (patch) | |
| tree | 67ea66cbce80e23d6da69d562c439d74fab82bcd | |
| parent | 7294f28c3a023ebbef8ee490ca82a165528e1c2d (diff) | |
| download | minetest-8b9bf47166a9527a5b547200160a43f2924f5ab5.tar.gz minetest-8b9bf47166a9527a5b547200160a43f2924f5ab5.tar.bz2 minetest-8b9bf47166a9527a5b547200160a43f2924f5ab5.zip | |
Fix stored XSS vulnerability in the serverlist
| -rw-r--r-- | util/master/list.js | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/util/master/list.js b/util/master/list.js index 1c9547fbd..a17458fb4 100644 --- a/util/master/list.js +++ b/util/master/list.js @@ -48,7 +48,7 @@ function success(r) { if (/:/.test(s.address)) s.address = '[' + s.address + ']'; h += '<tr class="mts_row">'; h += '<td class="mts_address">' + e(s.address) + (s.port != 30000 ? (':' + e(s.port)) : '') + '</td>'; - h += '<td class="mts_clients">' + e(s.clients) + (s.clients_max ? '/' + e(s.clients_max) : '') + (s.clients_top ? ', ' + s.clients_top : '') + '</td>'; + h += '<td class="mts_clients">' + e(s.clients) + (s.clients_max ? '/' + e(s.clients_max) : '') + (s.clients_top ? ', ' + e(s.clients_top) : '') + '</td>'; var mods = 0; if (s.mods && jQuery.isArray(s.mods)) { mods = s.mods.length; |