summaryrefslogtreecommitdiffstats
path: root/dhcp-listsubnets-html.lsp
diff options
context:
space:
mode:
Diffstat (limited to 'dhcp-listsubnets-html.lsp')
-rw-r--r--dhcp-listsubnets-html.lsp6
1 files changed, 3 insertions, 3 deletions
diff --git a/dhcp-listsubnets-html.lsp b/dhcp-listsubnets-html.lsp
index 242afe1..db302d0 100644
--- a/dhcp-listsubnets-html.lsp
+++ b/dhcp-listsubnets-html.lsp
@@ -17,14 +17,14 @@
<%= html.link{value=page_info.script..page_info.prefix..page_info.controller.."/editsubnet?subnet="..subnet.."&redir="..page_info.orig_action, label="Edit "} %>
<%= html.link{value=page_info.script..page_info.prefix..page_info.controller.."/delsubnet?subnet="..subnet.."&redir="..page_info.orig_action, label="Delete "} %>
</TD>
- <TD style="white-space:nowrap;"><%= subnet %></TD>
+ <TD style="white-space:nowrap;"><%= html.html_escape(subnet) %></TD>
</TR>
<% end %>
</TABLE>
<dt>Add new subnet</dt>
-<dd><form action="<%= page_info.script .. page_info.prefix .. page_info.controller .. "/createsubnet" %>" method="POST">
-<input class="hidden" type="hidden" name="redir" value="<%= page_info.orig_action %>" >
+<dd><form action="<%= html.html_escape(page_info.script .. page_info.prefix .. page_info.controller .. "/createsubnet") %>" method="POST">
+<input class="hidden" type="hidden" name="redir" value="<%= html.html_escape(page_info.orig_action) %>" >
<input type=submit value="New" class="submit">
</form></dd>
</DL>
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-22 21:00:29 +0000