pengjunjie/web-apps
1
0
Fork 1
mirror of https://github.com/ONLYOFFICE/web-apps.git synced 2026-02-10 18:05:32 +08:00
Code Issues Packages Projects Releases Wiki Activity

For bug 77918 (fix feedback & support menu item) + Fix XSS-injection in plugin name

Browse Source
This commit is contained in:
Julia.Radzhabova
2025-10-28 16:09:30 +03:00
parent 304d708edb
commit bf84857cf1
5 changed files with 15 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
apps/documenteditor/forms/app/controller/Plugins.js
View File

@ -165,7 +165,7 @@ define([
me.pluginDlg = new Common.Views.PluginDlg({
cls: isCustomWindow ? 'plain' : '',
header: !isCustomWindow,
title: plugin.get_Name(lang),
title: Common.Utils.String.htmlEncode(plugin.get_Name(lang)),
width: size[0], // inner width
height: size[1], // inner height
url: url,