From f21263364fb9d06dc6bac95a69c0ecdaf8394129 Mon Sep 17 00:00:00 2001
From: Jessica Wang <jessica@cloud.com>
Date: Fri, 16 Mar 2012 13:11:44 -0700
Subject: [PATCH] cloudstack 3.0 UI - XSS - global setting page - fix a bug
 that notification got hacked after saving a value that has script tag (XSS
 attack).

---
 ui/scripts/ui/widgets/listView.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ui/scripts/ui/widgets/listView.js b/ui/scripts/ui/widgets/listView.js
index 1f23ce61d1b..4cb564d022a 100644
--- a/ui/scripts/ui/widgets/listView.js
+++ b/ui/scripts/ui/widgets/listView.js
@@ -412,7 +412,7 @@
                   _l('Set value of') +
                   ' ' + $instanceRow.find('td.name span').html() +
                   ' ' + _l('to') +
-                  ' ' + newName :
+                  ' ' + _s(newName) :
                   _l('Unset value for') +
                   ' ' + $instanceRow.find('td.name span').html()
               },