Skip to content

Commit 2413838

Browse files
tomaiootomaioo
committed
fix(security): 2 improvements across 2 files
- Security: Arbitrary Code Execution via eval() in Menu Model - Security: Arbitrary Code Execution via eval() in GroupModule Model Signed-off-by: tomaioo <203048277+tomaioo@users.noreply.github.com>
1 parent dd3df1b commit 2413838

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

app/model/GroupModule.js

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ Ext.define('MBilling.model.GroupModule', {
1717
name: 'idModuletext',
1818
type: 'string',
1919
convert: function(value) {
20-
return eval(value);
20+
return value;
2121
}
2222
}, {
2323
name: 'show_menu',

0 commit comments

Comments
 (0)