From be44304e5cdaa9d132bd1d21407040a440123c4f Mon Sep 17 00:00:00 2001
From: Lukas Reschke <lukas@owncloud.com>
Date: Thu, 11 Feb 2016 17:56:56 +0100
Subject: Escape HTML

Fixes two XSS vulnerabilities within the JS.
---
 js/viewer.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'js/viewer.js')

diff --git a/js/viewer.js b/js/viewer.js
index b91aa0a..c7dfd50 100755
--- a/js/viewer.js
+++ b/js/viewer.js
@@ -9,8 +9,8 @@ var videoViewer = {
 			// insert HTML
 			$('<div id="videoplayer_overlay" style="display:none;"><div id="videoplayer_outer_container"><div id="videoplayer_container"><div id="videoplayer"></div></div></div></div>').appendTo('body');
 			var playerView = videoViewer.UI.playerTemplate
-								.replace(/%type%/g, videoViewer.mime)
-								.replace(/%src%/g, videoViewer.location)
+								.replace(/%type%/g, escapeHTML(videoViewer.mime))
+								.replace(/%src%/g, escapeHTML(videoViewer.location))
 			;
 			$(playerView).prependTo('#videoplayer');
 			// add event to overlay
-- 
cgit v1.2.3