Fixed XSS vulnerability

author Alexander Ebert <ebert@woltlab.com>

Wed, 9 Oct 2013 12:17:32 +0000 (14:17 +0200)

committer Alexander Ebert <ebert@woltlab.com>

Wed, 9 Oct 2013 12:17:32 +0000 (14:17 +0200)
author Alexander Ebert <ebert@woltlab.com>
Wed, 9 Oct 2013 12:17:32 +0000 (14:17 +0200)
committer Alexander Ebert <ebert@woltlab.com>
Wed, 9 Oct 2013 12:17:32 +0000 (14:17 +0200)
diff --git a/com.woltlab.wcf/templates/login.tpl b/com.woltlab.wcf/templates/login.tpl

index b24f3aacb76b6be85f74ea0567f6d5d519b82132..e52e4336b67c9cfa8abbd5a3b1ee2918feb8955c 100644 (file)
--- a/com.woltlab.wcf/templates/login.tpl
+++ b/com.woltlab.wcf/templates/login.tpl
@@ -150,7 +150,7 @@
         
         <div class="formSubmit">
                 <input type="submit" value="{lang}wcf.global.button.submit{/lang}" accesskey="s" />
-               <input type="hidden" name="url" value="{@$url}" />
+               <input type="hidden" name="url" value="{$url}" />
                 {@SECURITY_TOKEN_INPUT_TAG}
         </div>
  </form>
author	Alexander Ebert <ebert@woltlab.com>
	Wed, 9 Oct 2013 12:17:32 +0000 (14:17 +0200)
committer	Alexander Ebert <ebert@woltlab.com>
	Wed, 9 Oct 2013 12:17:32 +0000 (14:17 +0200)