Quick fix for issue tracker #315
- AntiXSS Library upgraded from version 1.5 to 4.2.1 - WebPortal web.config changed to force framework to use AntiXSS - obsolete AntiXss.HtmlEncode calls replaced with Microsoft.Security.Application.Encoder.HtmlEncode
This commit is contained in:
rdolezel
parent
141efa1b1b
commit
29c1a54382
23 changed files with 41 additions and 41 deletions
|
|
@ -239,17 +239,17 @@ namespace WebsitePanel.Portal.VPS
|
|||
private void BindSummary()
|
||||
{
|
||||
// general
|
||||
litHostname.Text = AntiXss.HtmlEncode(String.Format("{0}.{1}", txtHostname.Text.Trim(), txtDomain.Text.Trim()));
|
||||
litHostname.Text = Microsoft.Security.Application.Encoder.HtmlEncode(String.Format("{0}.{1}", txtHostname.Text.Trim(), txtDomain.Text.Trim()));
|
||||
litOperatingSystem.Text = listOperatingSystems.SelectedItem.Text;
|
||||
|
||||
litSummaryEmail.Text = AntiXss.HtmlEncode(txtSummaryEmail.Text.Trim());
|
||||
litSummaryEmail.Text = Microsoft.Security.Application.Encoder.HtmlEncode(txtSummaryEmail.Text.Trim());
|
||||
SummSummaryEmailRow.Visible = chkSendSummary.Checked;
|
||||
|
||||
// config
|
||||
litCpu.Text = AntiXss.HtmlEncode(ddlCpu.SelectedValue);
|
||||
litRam.Text = AntiXss.HtmlEncode(txtRam.Text.Trim());
|
||||
litHdd.Text = AntiXss.HtmlEncode(txtHdd.Text.Trim());
|
||||
litSnapshots.Text = AntiXss.HtmlEncode(txtSnapshots.Text.Trim());
|
||||
litCpu.Text = Microsoft.Security.Application.Encoder.HtmlEncode(ddlCpu.SelectedValue);
|
||||
litRam.Text = Microsoft.Security.Application.Encoder.HtmlEncode(txtRam.Text.Trim());
|
||||
litHdd.Text = Microsoft.Security.Application.Encoder.HtmlEncode(txtHdd.Text.Trim());
|
||||
litSnapshots.Text = Microsoft.Security.Application.Encoder.HtmlEncode(txtSnapshots.Text.Trim());
|
||||
optionDvdInstalled.Value = chkDvdInstalled.Checked;
|
||||
optionBootFromCd.Value = chkBootFromCd.Checked;
|
||||
optionNumLock.Value = chkNumLock.Checked;
|
||||
|
|
@ -262,23 +262,23 @@ namespace WebsitePanel.Portal.VPS
|
|||
// external network
|
||||
optionExternalNetwork.Value = chkExternalNetworkEnabled.Checked;
|
||||
SummExternalAddressesNumberRow.Visible = radioExternalRandom.Checked && chkExternalNetworkEnabled.Checked;
|
||||
litExternalAddressesNumber.Text = AntiXss.HtmlEncode(txtExternalAddressesNumber.Text.Trim());
|
||||
litExternalAddressesNumber.Text = Microsoft.Security.Application.Encoder.HtmlEncode(txtExternalAddressesNumber.Text.Trim());
|
||||
SummExternalAddressesListRow.Visible = radioExternalSelected.Checked && chkExternalNetworkEnabled.Checked;
|
||||
|
||||
List<string> ipAddresses = new List<string>();
|
||||
foreach (ListItem li in listExternalAddresses.Items)
|
||||
if (li.Selected)
|
||||
ipAddresses.Add(li.Text);
|
||||
litExternalAddresses.Text = AntiXss.HtmlEncode(String.Join(", ", ipAddresses.ToArray()));
|
||||
litExternalAddresses.Text = Microsoft.Security.Application.Encoder.HtmlEncode(String.Join(", ", ipAddresses.ToArray()));
|
||||
|
||||
// private network
|
||||
optionPrivateNetwork.Value = chkPrivateNetworkEnabled.Checked;
|
||||
SummPrivateAddressesNumberRow.Visible = radioPrivateRandom.Checked && chkPrivateNetworkEnabled.Checked && (ViewState["DHCP"] == null);
|
||||
litPrivateAddressesNumber.Text = AntiXss.HtmlEncode(txtPrivateAddressesNumber.Text.Trim());
|
||||
litPrivateAddressesNumber.Text = Microsoft.Security.Application.Encoder.HtmlEncode(txtPrivateAddressesNumber.Text.Trim());
|
||||
SummPrivateAddressesListRow.Visible = radioPrivateSelected.Checked && chkPrivateNetworkEnabled.Checked && (ViewState["DHCP"] == null);
|
||||
|
||||
string[] privIps = Utils.ParseDelimitedString(txtPrivateAddressesList.Text, '\n', '\r', ' ', '\t');
|
||||
litPrivateAddressesList.Text = AntiXss.HtmlEncode(String.Join(", ", privIps));
|
||||
litPrivateAddressesList.Text = Microsoft.Security.Application.Encoder.HtmlEncode(String.Join(", ", privIps));
|
||||
}
|
||||
|
||||
protected void wizard_FinishButtonClick(object sender, WizardNavigationEventArgs e)
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue