From 33547d1d73237270e6d2f21edace5b2317856a1c Mon Sep 17 00:00:00 2001 From: FreddleSpl0it <75116288+FreddleSpl0it@users.noreply.github.com> Date: Tue, 12 May 2026 08:31:51 +0200 Subject: [PATCH] [Web] escape HTML in sieve filter edit view and queue manager --- data/web/js/site/queue.js | 13 ++++++++----- data/web/templates/edit/filter.twig | 2 +- 2 files changed, 9 insertions(+), 6 deletions(-) diff --git a/data/web/js/site/queue.js b/data/web/js/site/queue.js index 26c15091d..9adc79b5f 100644 --- a/data/web/js/site/queue.js +++ b/data/web/js/site/queue.js @@ -48,13 +48,13 @@ jQuery(function($){ url: "/api/v1/get/mailq/all", dataSrc: function(data){ $.each(data, function (i, item) { - item.chkbox = ''; + item.chkbox = ''; rcpts = $.map(item.recipients, function(i) { return escapeHtml(i); }); item.recipients = rcpts.join('
'); item.action = '
' + - '' + lang.show_message + '' + + '' + lang.show_message + '' + '
'; }); return data; @@ -79,12 +79,14 @@ jQuery(function($){ { title: 'QID', data: 'queue_id', - defaultContent: '' + defaultContent: '', + render: $.fn.dataTable.render.text() }, { title: 'Queue', data: 'queue_name', - defaultContent: '' + defaultContent: '', + render: $.fn.dataTable.render.text() }, { title: lang_admin.arrival_time, @@ -106,7 +108,8 @@ jQuery(function($){ { title: lang_admin.sender, data: 'sender', - defaultContent: '' + defaultContent: '', + render: $.fn.dataTable.render.text() }, { title: lang_admin.recipients, diff --git a/data/web/templates/edit/filter.twig b/data/web/templates/edit/filter.twig index 124ecaf7b..743f088b7 100644 --- a/data/web/templates/edit/filter.twig +++ b/data/web/templates/edit/filter.twig @@ -23,7 +23,7 @@
- +