Skip to content

Commit 868590f

Browse files
Pek5892github-advanced-security[bot]
Pek5892
and
github-advanced-security[bot]
authored
Potential fix for code scanning alert no. 40: DOM text reinterpreted as HTML
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
1 parent bbdde97 commit 868590f

1 file changed

Lines changed: 2 additions & 1 deletion

File tree

assets/src/js/base/supersearch.js

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -193,13 +193,14 @@ $(document).ready(function () {
193193
$('.nav-sidebar').hide().addClass('search-hidden');
194194
container.show();
195195

196+
const safeSearchTerm = escapeHtml(searchTerm);
196197
// Aggiungi header per i risultati
197198
container.append(`
198199
<div class="search-results-header">
199200
<h6>
200201
<span>
201202
<i class="fa fa-search"></i> Risultati per:
202-
<span class="search-term">${searchTerm}</span>
203+
<span class="search-term">${safeSearchTerm}</span>
203204
</span>
204205
<button class="btn btn-sm" id="clear-search" title="Cancella ricerca">
205206
<i class="fa fa-times"></i>

0 commit comments

Comments
 (0)