From dfc99fb26545d7193e31bc79545292eb5080b23b Mon Sep 17 00:00:00 2001
From: Michael Kuron <1748330+mkuron@users.noreply.github.com>
Date: Sat, 2 May 2026 16:24:01 +0200
Subject: [PATCH] Escape generated password in mobileconfig

Escape ampersand, less than, greater than to avoid generating invalid XML.

Fixes #7171
---
 data/web/mobileconfig.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/web/mobileconfig.php b/data/web/mobileconfig.php
index 7c0ead7f5..2765d14f2 100644
--- a/data/web/mobileconfig.php
+++ b/data/web/mobileconfig.php
@@ -52,7 +52,7 @@ if (isset($_GET['app_password'])) {
   else
       $platform = $_SERVER['HTTP_USER_AGENT'];
 
-  $password = password_generate();
+  $password = htmlspecialchars(password_generate(), ENT_NOQUOTES);
 
   $attr = array(
       'app_name' => $platform,