From acfd461617660e17d7cdbbd4e170c76cf3736797 Mon Sep 17 00:00:00 2001
From: Evgeny Gryaznov <egryaznov@gmail.com>
Date: Mon, 21 Feb 2011 01:07:35 +0100
Subject: [PATCH] fix XSS problem in leavemessage

---
 src/messenger/webim/libs/chat.php                               | 2 +-
 src/messenger/webim/styles/default/templates/leavemessage.tpl   | 2 +-
 src/messenger/webim/styles/original/templates/leavemessage.tpl  | 2 +-
 .../webim/styles/simplicity/templates/leavemessage.tpl          | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/messenger/webim/libs/chat.php b/src/messenger/webim/libs/chat.php
index cc5b7583..03a6c276 100644
--- a/src/messenger/webim/libs/chat.php
+++ b/src/messenger/webim/libs/chat.php
@@ -290,7 +290,7 @@ function setup_leavemessage($name, $email, $message, $groupid, $groupname, $info
 	$page['showcaptcha'] = $settings["enablecaptcha"] == "1" && $canshowcaptcha ? "1" : "";
 	$page['formgroupid'] = $groupid;
 	$page['formgroupname'] = $groupname;
-	$page['info'] = topage($info);
+	$page['forminfo'] = topage($info);
 	$page['referrer'] = urlencode(topage($referrer));
 }
 
diff --git a/src/messenger/webim/styles/default/templates/leavemessage.tpl b/src/messenger/webim/styles/default/templates/leavemessage.tpl
index 119cf7b8..ebe482e3 100644
--- a/src/messenger/webim/styles/default/templates/leavemessage.tpl
+++ b/src/messenger/webim/styles/default/templates/leavemessage.tpl
@@ -43,7 +43,7 @@
 
 <form name="leaveMessageForm" method="post" action="${webimroot}/leavemessage.php">
 <input type="hidden" name="style" value="${styleid}"/>
-<input type="hidden" name="info" value="${page:info}"/>
+<input type="hidden" name="info" value="${form:info}"/>
 <input type="hidden" name="referrer" value="${page:referrer}"/>
 ${if:formgroupid}<input type="hidden" name="group" value="${form:groupid}"/>${endif:formgroupid}
 <table width="100%" cellspacing="0" cellpadding="0" border="0">
diff --git a/src/messenger/webim/styles/original/templates/leavemessage.tpl b/src/messenger/webim/styles/original/templates/leavemessage.tpl
index cee0ec1a..28c6f90a 100644
--- a/src/messenger/webim/styles/original/templates/leavemessage.tpl
+++ b/src/messenger/webim/styles/original/templates/leavemessage.tpl
@@ -28,7 +28,7 @@
 
 <form name="leaveMessageForm" method="post" action="${webimroot}/leavemessage.php">
 <input type="hidden" name="style" value="${styleid}"/>
-<input type="hidden" name="info" value="${page:info}"/>
+<input type="hidden" name="info" value="${form:info}"/>
 <input type="hidden" name="referrer" value="${page:referrer}"/>
 ${if:formgroupid}<input type="hidden" name="group" value="${form:groupid}"/>${endif:formgroupid}
 <table width="100%" style="height:100%;" cellspacing="0" cellpadding="0" border="0">
diff --git a/src/messenger/webim/styles/simplicity/templates/leavemessage.tpl b/src/messenger/webim/styles/simplicity/templates/leavemessage.tpl
index 27512f50..dfd58110 100644
--- a/src/messenger/webim/styles/simplicity/templates/leavemessage.tpl
+++ b/src/messenger/webim/styles/simplicity/templates/leavemessage.tpl
@@ -9,7 +9,7 @@
 <div id="whitebg">
 	<form name="leaveMessageForm" method="post" action="${webimroot}/leavemessage.php">
 		<input type="hidden" name="style" value="${styleid}"/>
-		<input type="hidden" name="info" value="${page:info}"/>
+		<input type="hidden" name="info" value="${form:info}"/>
 		<input type="hidden" name="referrer" value="${page:referrer}"/>
 		${if:formgroupid}<input type="hidden" name="group" value="${form:groupid}"/>${endif:formgroupid}
 		<table cellpadding="0" cellspacing="5" border="0" width="100%">