From 3a62fb5900bba45ad340daeb0f2ba01405a551d0 Mon Sep 17 00:00:00 2001 From: Shannon Date: Wed, 9 Sep 2015 22:00:29 +0200 Subject: [PATCH] fixes script editor xss --- .../umbraco/settings/scripts/editScript.aspx.cs | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Umbraco.Web/umbraco.presentation/umbraco/settings/scripts/editScript.aspx.cs b/src/Umbraco.Web/umbraco.presentation/umbraco/settings/scripts/editScript.aspx.cs index 1af2328494..ba2ab86d51 100644 --- a/src/Umbraco.Web/umbraco.presentation/umbraco/settings/scripts/editScript.aspx.cs +++ b/src/Umbraco.Web/umbraco.presentation/umbraco/settings/scripts/editScript.aspx.cs @@ -145,7 +145,7 @@ namespace umbraco.cms.presentation.settings.scripts ScriptManager.GetCurrent(Page).Services.Add(new ServiceReference("../webservices/legacyAjaxCalls.asmx")); //Clean the name field for xss - NameTxt.Text = NameTxt.Text.CleanForXss(ignoreFromClean: '\\'); + NameTxt.Text = NameTxt.Text.CleanForXss('\\', '/'); } }