From: Alexander Ebert <ebert@woltlab.com>
Date: Mon, 22 Jul 2013 12:38:28 +0000 (+0200)
Subject: Fixed escaping of values returned by WCF.Search.Base
X-Git-Tag: 2.0.0_Beta_5~20^2~3
X-Git-Url: https://git.stricted.de/?a=commitdiff_plain;h=a980041b883fcfc722827513d39a7a984a02175d;p=GitHub%2FWoltLab%2FWCF.git

Fixed escaping of values returned by WCF.Search.Base
---

diff --git a/wcfsetup/install/files/acp/js/WCF.ACP.js b/wcfsetup/install/files/acp/js/WCF.ACP.js
index 65aa99e6a3..f5d726097b 100644
--- a/wcfsetup/install/files/acp/js/WCF.ACP.js
+++ b/wcfsetup/install/files/acp/js/WCF.ACP.js
@@ -1915,7 +1915,7 @@ WCF.ACP.Search = WCF.Search.Base.extend({
 		for (var $i in resultList.items) {
 			var $item = resultList.items[$i];
 			
-			$('<li><a href="' + $item.link + '">' + $item.title + '</a></li>').appendTo(this._list);
+			$('<li><a href="' + $item.link + '">' + WCF.String.escapeHTML($item.title) + '</a></li>').appendTo(this._list);
 			
 			this._itemCount++;
 		}