mirror/opensourcepos
1
0
Fork 0
mirror of https://github.com/opensourcepos/opensourcepos.git synced 2026-03-26 02:43:03 -04:00
Code Issues Packages Projects Releases Wiki Activity

Fix stored XSS in gcaptcha_site_key on login page

Browse Source
This commit is contained in:
Ollama
2026-03-14 15:30:52 +00:00
committed by jekkos
parent 7cb1d95da7
commit 48af67bd00
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/Views/login.php
View File

@@ -92,7 +92,7 @@
<?php
if ($gcaptcha_enabled) {
echo '<script src="https://www.google.com/recaptcha/api.js"></script>';
echo '<div class="g-recaptcha mb-3" style="text-align: center;" data-sitekey="' . $config['gcaptcha_site_key'] . '"></div>';
echo '<div class="g-recaptcha mb-3" style="text-align: center;" data-sitekey="' . esc($config['gcaptcha_site_key']) . '"></div>';
}
?>
<div class="d-grid">