From 597a5caee5fd93ea460d12f404b1b1dd53e9728a Mon Sep 17 00:00:00 2001
From: FrancescoUK <francesco.lodolo.uk@gmail.com>
Date: Mon, 8 Aug 2016 16:09:40 +0100
Subject: [PATCH] XSS clean the license text (#359)

---
 application/controllers/Config.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/application/controllers/Config.php b/application/controllers/Config.php
index f17a2f0db..8609abc2e 100644
--- a/application/controllers/Config.php
+++ b/application/controllers/Config.php
@@ -104,6 +104,8 @@ class Config extends Secure_Controller
 					$license[$i]['text'] .= "\n";
 				}
 			}
+			
+			$license[$i]['text'] = $this->xss_clean($license[$i]['text']);
 		}
 		
 		return $license;