diff options
| author | Andrejs Griščenko <andrejs.griscenko@zabbix.com> | 2021-12-10 19:05:29 +0300 |
|---|---|---|
| committer | Andrejs Griščenko <andrejs.griscenko@zabbix.com> | 2021-12-10 19:07:59 +0300 |
| commit | e53cf2268429eb19f1b803300985d4b37484d8c1 (patch) | |
| tree | 4a7fdfc83671e724856422a3539dfb14c626b9b8 | |
| parent | 7b1db3289bfd9f7e43bf1b3e7f360f817873ea20 (diff) | |
..F....... [DEV-2026] fixed XSS vulnerability in multiselect
* commit '21596690cac1b29bc29973f5d2d38d413e5de02c':
..F....... [DEV-2026] recovered deleted comment
..F....... [DEV-2026] added changes for graph widget pattern match
..F....... [DEV-2026] fixed XSS vulnerability in multiselect
(cherry picked from commit 74b8716a73c324e6cdbdda1de434e7872740a908)
| -rw-r--r-- | ui/js/multiselect.js | 38 |
1 files changed, 32 insertions, 6 deletions
diff --git a/ui/js/multiselect.js b/ui/js/multiselect.js index 63e773ae5ef..9f59897b405 100644 --- a/ui/js/multiselect.js +++ b/ui/js/multiselect.js @@ -836,7 +836,6 @@ jQuery(function($) { var ms = $obj.data('multiSelect'), is_new = item.isNew || false, prefix = item.prefix || '', - search = ms.values.search.replace(/[.+?^${}()|[\]\\]/g, '\\$&').replace(/[*]/g, '\\\*?'), $li = $('<li>', { 'data-id': item.id, 'data-label': prefix + item.name @@ -854,11 +853,38 @@ jQuery(function($) { } // Highlight matched. - $li - .append(item.name.replace(new RegExp(search, 'gi'), function(match) { - return '<span' + (!is_new ? ' class="suggest-found"' : '') + '>' + match + '</span>'; - })) - .toggleClass('suggest-new', is_new); + if (ms.values.search !== item.name) { + var text = item.name.toLowerCase(), + search = ms.values.search.toLowerCase().replace(/[*]+/g, ''), + start = 0, + end = 0; + + while (search !== '' && text.indexOf(search, end) > -1) { + end = text.indexOf(search, end); + + if (end > start) { + $li.append(document.createTextNode(item.name.substring(start, end))); + } + + $li.append($('<span>', { + class: !is_new ? 'suggest-found' : '', + text: item.name.substring(end, end + search.length) + })).toggleClass('suggest-new', is_new); + + end += search.length; + start = end; + } + + if (end < item.name.length) { + $li.append(document.createTextNode(item.name.substring(end, item.name.length))); + } + } + else { + $li.append($('<span>', { + class: !is_new ? 'suggest-found' : '', + text: item.name + })).toggleClass('suggest-new', is_new); + } $('ul', ms.values.available_div).append($li); } |