Fixed XSS

diff --git a/syslog/save_log.cgi b/syslog/save_log.cgi
index 07d0644..3740b3b 100755 (executable)
--- a/syslog/save_log.cgi
+++ b/syslog/save_log.cgi
@@ -59,7 +59,7 @@ elsif ($in{'view'}) {
                }
        print "Refresh: $config{'refresh'}\r\n"
                if ($config{'refresh'});
-       &ui_print_header("<tt>".($file || $cmd)."</tt>",
+       &ui_print_header("<tt>".&html_escape($file || $cmd)."</tt>",
                         $text{'view_title'}, "");
 
        $lines = $in{'lines'} ? int($in{'lines'}) : $config{'lines'};