Add missing sanitization for HTML exporting of bookmarks.

author: wolfbeast <mcwerewolf@gmail.com> 2017-11-23 09:02:55 +0100
committer: wolfbeast <mcwerewolf@gmail.com> 2018-02-08 21:14:22 +0100
commit: f926ea2b694cf890e77d0e9ba985980c3575ca22 (patch)
tree: 6036a763e3b865255ee788cbc0d777a023dff512 /toolkit/components/places
parent: 0624c5764afb8bcba144d6124f17770dabb664df (diff)
download: uxp-f926ea2b694cf890e77d0e9ba985980c3575ca22.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/toolkit/components/places/BookmarkHTMLUtils.jsm b/toolkit/components/places/BookmarkHTMLUtils.jsm
index a009a5e7c8..2285aae6e7 100644
--- a/toolkit/components/places/BookmarkHTMLUtils.jsm
+++ b/toolkit/components/places/BookmarkHTMLUtils.jsm
@@ -1145,7 +1145,7 @@ BookmarkExporter.prototype = {
     if (aItem.charset)
       this._writeAttribute("LAST_CHARSET", escapeHtmlEntities(aItem.charset));
     if (aItem.tags)
-      this._writeAttribute("TAGS", aItem.tags);
+      this._writeAttribute("TAGS", escapeHtmlEntities(aItem.tags));
     this._writeLine(">" + escapeHtmlEntities(aItem.title) + "</A>");
     this._writeDescription(aItem, aIndent);
   },
author	wolfbeast <mcwerewolf@gmail.com>	2017-11-23 09:02:55 +0100
committer	wolfbeast <mcwerewolf@gmail.com>	2018-02-08 21:14:22 +0100
commit	f926ea2b694cf890e77d0e9ba985980c3575ca22 (patch)
tree	6036a763e3b865255ee788cbc0d777a023dff512 /toolkit/components/places
parent	0624c5764afb8bcba144d6124f17770dabb664df (diff)
download	uxp-f926ea2b694cf890e77d0e9ba985980c3575ca22.tar.gz