mirror/webgui
1
0
Fork 0
mirror of https://github.com/unraid/webgui.git synced 2026-01-04 08:29:51 -06:00
Code Issues Packages Projects Releases Wiki Activity

fix: Possible XSS via email test functionality

Browse Source
This commit is contained in:
Tom Mortensen
2025-12-17 07:56:11 -08:00
parent e90c7005da
commit e8b0f569bd
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
emhttp/plugins/dynamix/include/SMTPtest.php
View File

@@ -40,7 +40,7 @@ function PsKill($pid) {
if (PsExecute("$docroot/webGui/scripts/notify -s 'Unraid SMTP Test' -d 'Test message received!' -i 'alert' -l '/Settings/Notifications' -t")) {
$result = exec("tail -3 /var/log/syslog|awk '/sSMTP/ {getline;print}'|cut -d']' -f2|cut -d'(' -f1");
$color = strpos($result, 'Sent mail') ? 'green' : 'red';
echo _("Test result")."<span class='$color'>$result</span>";
echo _("Test result")."<span class='$color'>".htmlspecialchars($result)."</span>";
} else {
echo _("Test result")."<span class='red'>: "._('No reply from mail server')."</span>";
}