Cavemanon/piratepoet
7
Fork 0
Code Pull Requests Actions Releases 16 Activity

Encode value before printing it

Browse Source 
[MAILPOET-3698]
This commit is contained in:
Pavel Dohnal
2021-07-19 11:06:21 +02:00
committed by Veljko V
parent 3941fccefa
commit 56e18c151d
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/Subscription/CaptchaRenderer.php
View File

@ -98,7 +98,7 @@ class CaptchaRenderer {
'class="mailpoet_form mailpoet_captcha_form" ' .
'novalidate>';
$formHtml .= '<input type="hidden" name="data[form_id]" value="' . $formId . '" />';
$formHtml .= '<input type="hidden" name="data[captcha_session_id]" value="' . $this->captchaSession->getId() . '" />';
$formHtml .= '<input type="hidden" name="data[captcha_session_id]" value="' . htmlspecialchars($this->captchaSession->getId()) . '" />';
$formHtml .= '<input type="hidden" name="api_version" value="v1" />';
$formHtml .= '<input type="hidden" name="endpoint" value="subscribers" />';
$formHtml .= '<input type="hidden" name="mailpoet_method" value="subscribe" />';