Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

"Allowing" <br> tag when output escaping content in the command module output.

Browse Source 
git-svn-id: https://beef.googlecode.com/svn/trunk@1391 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
This commit is contained in:
antisnatchor
2011-11-02 15:15:24 +00:00
parent a930d11792
commit 9bed6cf9fd
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
extensions/admin_ui/media/javascript/ui/panel/common.js
View File

@@ -260,8 +260,8 @@ function genExisingExploitPanel(panel, command_id, zombie, sb) {
for(index in record.data.data) {
result = record.data.data[index];
index = index.toString().replace('_', ' ');
html += String.format('<b>{0}</b>: {1}<br>', index, $jEncoder.encoder.encodeForHTML(result));
//output escape everything, but allow the <br> tag for better rendering.
html += String.format('<b>{0}</b>: {1}<br>', index, $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>'));
}
html += '</p>';