Sanitize shareWith

diff --git a/core/js/share.js b/core/js/share.js
index 145c31a86c85488e053ff5bbee0c56cba52e0a9d..34f24da4df746eeb788a104936888776210a2c96 100644 (file)
--- a/core/js/share.js
+++ b/core/js/share.js
@@ -309,12 +309,12 @@ OC.Share={
                        if (permissions & OC.PERMISSION_SHARE) {
                                shareChecked = 'checked="checked"';
                        }
-                       var html = '<li style="clear: both;" data-share-type="'+shareType+'" data-share-with="'+shareWith+'" title="' + shareWith + '">';
+                       var html = '<li style="clear: both;" data-share-type="'+escapeHTML(shareType)+'" data-share-with="'+escapeHTML(shareWith)+'" title="' + escapeHTML(shareWith) + '">';
                        html += '<a href="#" class="unshare" style="display:none;"><img class="svg" alt="'+t('core', 'Unshare')+'" src="'+OC.imagePath('core', 'actions/delete')+'"/></a>';
                        if(shareWith.length > 14){
-                               html += shareWithDisplayName.substr(0,11) + '...';
+                               html += escapeHTML(shareWithDisplayName.substr(0,11) + '...');
                        }else{
-                               html += shareWithDisplayName;
+                               html += escapeHTML(shareWithDisplayName);
                        }
                        if (possiblePermissions & OC.PERMISSION_CREATE || possiblePermissions & OC.PERMISSION_UPDATE || possiblePermissions & OC.PERMISSION_DELETE) {
                                if (editChecked == '') {