From dcf18656ba99b5f8f91312f460407e32d11c40b0 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Tim=20D=C3=BCsterhus?= <duesterhus@woltlab.com>
Date: Mon, 16 Jan 2023 14:40:29 +0100
Subject: [PATCH] Fix XSS vulnerability in registerActivation.tpl

This was introduced in a477e3522933a7204b02013cd6b6d47d0db1d254 when the
activation logic was refactored to no longer use numeric-only activation codes.

Thanks to Chabik Hatim for responsibly reporting the vulnerability.
---
 com.woltlab.wcf/templates/registerActivation.tpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/com.woltlab.wcf/templates/registerActivation.tpl b/com.woltlab.wcf/templates/registerActivation.tpl
index f135cf4607..24d97fe46c 100644
--- a/com.woltlab.wcf/templates/registerActivation.tpl
+++ b/com.woltlab.wcf/templates/registerActivation.tpl
@@ -25,7 +25,7 @@
 		<dl{if $errorField == 'activationCode'} class="formError"{/if}>
 			<dt><label for="activationCode">{lang}wcf.user.activationCode{/lang}</label></dt>
 			<dd>
-				<input type="text" id="activationCode" maxlength="40" name="activationCode" value="{@$activationCode}" required class="medium">
+				<input type="text" id="activationCode" maxlength="40" name="activationCode" value="{$activationCode}" required class="medium">
 				{if $errorField == 'activationCode'}
 					<small class="innerError">
 						{if $errorType == 'empty'}
-- 
2.20.1