kde/dolphin
kde/dolphin
1
0
Fork 0
mirror of https://invent.kde.org/system/dolphin synced 2024-11-05 18:47:12 +00:00
Code Issues Projects Releases Packages Wiki Activity

if you write html, then use htmlURL(), otherwise this is vulnerable

Browse source 
to HTML injection. I don't think its relevant though.
CCMAIL: security@kde.org

svn path=/trunk/kdebase/kfind/; revision=226447
This commit is contained in:
Dirk Mueller 2003-05-17 20:52:35 +00:00
parent 44c6b67274
commit 082f14c623
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
kfind/kfwin.cpp
View file

@ -230,7 +230,7 @@ void KfindWindow::saveResults()
while(item != NULL)
{
QString path=((KfFileLVI*)item)->fileitem.url().url();
QString pretty=((KfFileLVI*)item)->fileitem.url().prettyURL();
QString pretty=((KfFileLVI*)item)->fileitem.url().htmlURL();
stream << QString::fromLatin1("<DT><A HREF=\"") << path
<< QString::fromLatin1("\">") << pretty
<< QString::fromLatin1("</A>\n");