1
0
mirror of https://github.com/janeczku/calibre-web synced 2024-11-24 02:27:22 +00:00

Removed xss on shelf add/remove action

This commit is contained in:
Ozzie Isaacs 2021-08-30 17:06:11 +02:00
parent d8bad7394a
commit ceffa3a108

View File

@ -69,7 +69,7 @@ $("#archived_cb").on("change", function() {
templates.remove({
add: this.href,
remove: $this.data("remove-href"),
content: this.textContent
content: $("<div>").text(this.textContent).html()
})
);
break;
@ -78,7 +78,7 @@ $("#archived_cb").on("change", function() {
templates.add({
add: $this.data("add-href"),
remove: this.href,
content: this.textContent
content: $("<div>").text(this.textContent).html(),
})
);
break;