copy_and_paste: Fix HTML injection bug in construct_copy_div.

Signed-off-by: Anders Kaseorg <anders@zulip.com>
2025-11-03 05:23:35 +00:00 · 2024-04-02 17:50:19 -07:00
parent 25ff0d4418
commit e1029b59ed
1 changed files with 5 additions and 1 deletions
--- a/web/src/copy_and_paste.js
+++ b/web/src/copy_and_paste.js
@@ -90,7 +90,11 @@ function construct_copy_div($div, start_id, end_id) {
        }
        const message = message_lists.current.get(rows.id($row));
        const $content = $(message.content);
-        $content.first().prepend(message.sender_full_name + ": ");
+        $content.first().prepend(
+            $("<span>")
+                .text(message.sender_full_name + ": ")
+                .contents(),
+        );
        $div.append($content);
    }