Fix XSS attacks on the dogtag administration page #1373.

Porting this set of fixes over from last downstream release upstream.

Upon further review, decided to fix a few missing things pointed out by the code review and a few other things:

1. Too many copies of escapeJavaScriptString all over the place. Consolidated the two related functions "escapeJavaScriptString" and "escapeJavaScriptStringHTML" methods in the CMSTemplate class to be called everywhere. Removed the duplicated methods in other classes.

2. There were some places where "escapeJavaScriptString" was called, when we really wanted "escapeJavaScriptStringHTML". Fixed that everywhere. One reason for this is a copied version of "escapeJavaScriptString" actually was identical to CMSTemplate.escapeJavaScriptString, which has been removed.

XSS fixes.

0 files changed, 0 insertions, 0 deletions