backport xss fix

2026-06-26 06:51:41 +02:00 · 2016-09-26 17:10:39 +03:00
parent 1fefc8d427
commit 2dec354131
1 changed files with 1 additions and 0 deletions
--- a/src/controllers/accounts/helpers.js
+++ b/src/controllers/accounts/helpers.js
@@ -109,6 +109,7 @@ helpers.getUserDataByUserSlug = function(userslug, callerUID, callback) {
 			userData.location = validator.escape(userData.location || '');
 			userData.signature = validator.escape(userData.signature || '');
 			userData.aboutme = validator.escape(userData.aboutme || '');
+			userData.birthday = validator.escape(userData.birthday || '');

 			userData['cover:url'] = userData['cover:url'] || require('../../coverPhoto').getDefaultProfileCover(userData.uid);
 			userData['cover:position'] = userData['cover:position'] || '50% 50%';