From 9cd7b5a4a6f5d52326ba7bfbf9467853a1e73842 Mon Sep 17 00:00:00 2001
From: wolfbeast <mcwerewolf@gmail.com>
Date: Thu, 23 Nov 2017 09:02:55 +0100
Subject: Add missing sanitization for HTML exporting of bookmarks.

---
 toolkit/components/places/BookmarkHTMLUtils.jsm | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'toolkit/components')

diff --git a/toolkit/components/places/BookmarkHTMLUtils.jsm b/toolkit/components/places/BookmarkHTMLUtils.jsm
index a009a5e7c..2285aae6e 100644
--- a/toolkit/components/places/BookmarkHTMLUtils.jsm
+++ b/toolkit/components/places/BookmarkHTMLUtils.jsm
@@ -1145,7 +1145,7 @@ BookmarkExporter.prototype = {
     if (aItem.charset)
       this._writeAttribute("LAST_CHARSET", escapeHtmlEntities(aItem.charset));
     if (aItem.tags)
-      this._writeAttribute("TAGS", aItem.tags);
+      this._writeAttribute("TAGS", escapeHtmlEntities(aItem.tags));
     this._writeLine(">" + escapeHtmlEntities(aItem.title) + "</A>");
     this._writeDescription(aItem, aIndent);
   },
-- 
cgit v1.2.3