From 99493731aef1fea9cab47e7f2694dcb0e0b019f3 Mon Sep 17 00:00:00 2001
From: Brady Miller <brady.g.miller@gmail.com>
Date: Wed, 28 Mar 2018 21:03:16 -0700
Subject: [PATCH] security fixes (#1531)

---
 gacl/admin/about.php                        | 2 +-
 gacl/admin/templates/phpgacl/about.tpl      | 6 +++---
 gacl/admin/templates/phpgacl/footer.tpl     | 6 +++---
 gacl/admin/templates/phpgacl/header.tpl     | 2 +-
 gacl/admin/templates/phpgacl/navigation.tpl | 2 +-
 5 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/gacl/admin/about.php b/gacl/admin/about.php
index 7ca1a22bf..c8cb021fa 100644
--- a/gacl/admin/about.php
+++ b/gacl/admin/about.php
@@ -84,7 +84,7 @@ switch ($_POST['action']) {
 		$system_info = get_system_info();
 
 		//Read credits.
-		$smarty->assign("credits", htmlentities( implode('',file('../CREDITS')) ));
+		$smarty->assign("credits", implode('',file('../CREDITS')) );
 
 		$smarty->assign("system_info", $system_info);
 		$smarty->assign("system_info_md5", md5($system_info) );
diff --git a/gacl/admin/templates/phpgacl/about.tpl b/gacl/admin/templates/phpgacl/about.tpl
index 9e321828b..ccb1ab6ad 100644
--- a/gacl/admin/templates/phpgacl/about.tpl
+++ b/gacl/admin/templates/phpgacl/about.tpl
@@ -59,9 +59,9 @@
 				<b>All information will be kept private, will not be sold, and will only be used for informational purposes regarding phpGACL.</b>
 				<br /><br />
     		<form method="post" name="about" action="about.php" align="center">
-				<textarea name="system_information" rows="10" cols="60" wrap="VIRTUAL">{$system_info}</textarea>
+				<textarea name="system_information" rows="10" cols="60" wrap="VIRTUAL">{$system_info|escape:'html'}</textarea>
 				<br />
-				<input type="hidden" name="system_info_md5" value="{$system_info_md5}" />
+				<input type="hidden" name="system_info_md5" value="{$system_info_md5|escape:'html'}" />
 				<input type="submit" name="action" value="Submit" />
 				</form>
 			</td>
@@ -75,7 +75,7 @@
           <tr>
 			<td>
 <pre>
-{$credits}
+{$credits|escape:'html'}
 </pre>
 			</td>
           </tr>
diff --git a/gacl/admin/templates/phpgacl/footer.tpl b/gacl/admin/templates/phpgacl/footer.tpl
index 0068056ed..f75c04267 100644
--- a/gacl/admin/templates/phpgacl/footer.tpl
+++ b/gacl/admin/templates/phpgacl/footer.tpl
@@ -1,11 +1,11 @@
 		</div></div>
-		
+
 		<div id="bot-br"><div id="bot-bl"><div id="bot-tr"><div id="bot-tl">
-			<a href="http://phpgacl.sourceforge.net">phpGACL</a> v{$phpgacl_version} (Schema v{$phpgacl_schema_version}) - Generic Access Control Lists
+			<a href="http://phpgacl.sourceforge.net">phpGACL</a> v{$phpgacl_version|escape:'html'} (Schema v{$phpgacl_schema_version|escape:'html'}) - Generic Access Control Lists
 			<br />
 			Copyright &copy; 2005 <a href="about.php">Mike Benoit</a>
 		</div></div></div></div>
-		
+
 	<!-- End Body -->
   </body>
 </html>
diff --git a/gacl/admin/templates/phpgacl/header.tpl b/gacl/admin/templates/phpgacl/header.tpl
index 65d51f636..2613f5952 100644
--- a/gacl/admin/templates/phpgacl/header.tpl
+++ b/gacl/admin/templates/phpgacl/header.tpl
@@ -2,5 +2,5 @@
 
 <html>
   <head>
-    <title>phpGACL - {$page_title}</title>
+    <title>phpGACL - {$page_title|escape:'html'}</title>
     <link rel="stylesheet" href="admin.css" type="text/css" title="phpGACL" />
diff --git a/gacl/admin/templates/phpgacl/navigation.tpl b/gacl/admin/templates/phpgacl/navigation.tpl
index c494ec8e6..905e83856 100644
--- a/gacl/admin/templates/phpgacl/navigation.tpl
+++ b/gacl/admin/templates/phpgacl/navigation.tpl
@@ -1,6 +1,6 @@
 		<div id="top-tr"><div id="top-tl"><div id="top-br"><div id="top-bl">
 			<h1><span>phpGACL</span></h1>
-			<h2>{$page_title}</h2>
+			<h2>{$page_title|escape:'html'}</h2>
 			<p><a href='../../interface/usergroup/adminacl.php' onclick='top.restoreSession()'><span style='font-size: 80%;'>(Back to OpenEMR's ACL menu)</span></a></p>
 {if $hidemenu neq TRUE}
 			<ul id="menu">
-- 
2.11.4.GIT