TablePanel: Fix XSS issue in header column rename (#23816)

* prevent xss * added escaping on tooltip. * Rebase done Co-authored-by: Marcus Andersson <marcus.andersson@grafana.com>

TablePanel: Fix XSS issue in header column rename (#23816)
* prevent xss * added escaping on tooltip. * Rebase done Co-authored-by: Marcus Andersson <marcus.andersson@grafana.com>
0284747c · Torkel Ödegaard · GitHub · c9e7796b · 0284747c
Commit 0284747c authored Apr 23, 2020 by Torkel Ödegaard Committed by GitHub Apr 23, 2020
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

public/app/plugins/panel/table-old/renderer.ts
+2 -2

No files found.
--- a/public/app/plugins/panel/table-old/renderer.ts
+++ b/public/app/plugins/panel/table-old/renderer.ts
@@ -56,7 +56,7 @@ export class TableRenderer {
          column.style = style;

          if (style.alias) {
-            column.title = column.text.replace(regex, style.alias);
+            column.title = textUtil.escapeHtml(column.text.replace(regex, style.alias));
          }

          break;
@@ -300,7 +300,7 @@ export class TableRenderer {
      const cellLink = this.templateSrv.replace(column.style.linkUrl, scopedVars, encodeURIComponent);
      const sanitizedCellLink = textUtil.sanitizeUrl(cellLink);

-      const cellLinkTooltip = this.templateSrv.replace(column.style.linkTooltip, scopedVars);
+      const cellLinkTooltip = textUtil.escapeHtml(this.templateSrv.replace(column.style.linkTooltip, scopedVars));
      const cellTarget = column.style.linkTargetBlank ? '_blank' : '';

      cellClasses.push('table-panel-cell-link');