From 8b9bf47166a9527a5b547200160a43f2924f5ab5 Mon Sep 17 00:00:00 2001
From: Sfan5 <sfan5@live.de>
Date: Wed, 7 Aug 2013 09:20:36 +0200
Subject: [PATCH] Fix stored XSS vulnerability in the serverlist

---
 util/master/list.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/util/master/list.js b/util/master/list.js
index 1c9547fbd..a17458fb4 100644
--- a/util/master/list.js
+++ b/util/master/list.js
@@ -48,7 +48,7 @@ function success(r) {
         if (/:/.test(s.address)) s.address = '[' + s.address + ']';
         h += '<tr class="mts_row">';
         h += '<td class="mts_address">' + e(s.address) + (s.port != 30000 ? (':' + e(s.port)) : '') + '</td>';
-        h += '<td class="mts_clients">' + e(s.clients) + (s.clients_max ? '/' + e(s.clients_max) : '') + (s.clients_top ? ', ' + s.clients_top : '') + '</td>';
+        h += '<td class="mts_clients">' + e(s.clients) + (s.clients_max ? '/' + e(s.clients_max) : '') + (s.clients_top ? ', ' + e(s.clients_top) : '') + '</td>';
         var mods = 0;
         if (s.mods && jQuery.isArray(s.mods)) {
             mods = s.mods.length;