From e637b7591ef810137014e7bdc89f10c661fa475d Mon Sep 17 00:00:00 2001
From: Fabian Patrik <patrik@websafe.hu>
Date: Mon, 1 Jan 2018 17:54:50 +0100
Subject: [PATCH] Fix stored xss when user import from zone file or dns
 template editor

---
 interface/web/dns/dns_srv_edit.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/interface/web/dns/dns_srv_edit.php b/interface/web/dns/dns_srv_edit.php
index e2b290ab9..16c1086db 100644
--- a/interface/web/dns/dns_srv_edit.php
+++ b/interface/web/dns/dns_srv_edit.php
@@ -51,9 +51,9 @@ class page_action extends dns_page_action {
 		// Split the 3 parts of the SRV Record apart
 		$split = explode(' ', $this->dataRecord['data']);
 
-		$app->tpl->setVar('weight', $split[0]);
-		$app->tpl->setVar('port', $split[1]);
-		$app->tpl->setVar('target', $split[2]);
+		$app->tpl->setVar('weight', $split[0], true);
+		$app->tpl->setVar('port', $split[1], true);
+		$app->tpl->setVar('target', $split[2], true);
 
 		parent::onShowEnd();
 	}
-- 
GitLab