Revision 082f3663
Added by Jim Pingle over 8 years ago
| src/usr/local/www/pkg_mgr_install.php | ||
|---|---|---|
| 319 | 319 |
<?php |
| 320 | 320 |
elseif ($_GET['from'] && $_GET['to']): |
| 321 | 321 |
?> |
| 322 |
<?=sprintf(gettext('Confirmation Required to upgrade package %1$s from %2$s to %3$s.'), $pkgname, $_GET['from'], $_GET['to'])?>
|
|
| 322 |
<?=sprintf(gettext('Confirmation Required to upgrade package %1$s from %2$s to %3$s.'), $pkgname, htmlspecialchars($_GET['from']), htmlspecialchars($_GET['to']))?>
|
|
| 323 | 323 |
<?php |
| 324 | 324 |
elseif ($firmwareupdate): |
| 325 | 325 |
?> |
Also available in: Unified diff
Encode 'from' and 'to' before output on pkg_mgr_install.php. Fixes #7225