Fixed a bug in the Javascript Library where improperly escaped characters could result in arbitrary javascript execution.

commit: f1bd6fa78a3235ade2365a43bb5124ff72807c96 [log] [tgz]
author: Pascal Kriete <pascal.kriete@ellislab.com> Tue Apr 05 15:04:28 2011 -0400
committer: Pascal Kriete <pascal.kriete@ellislab.com> Tue Apr 05 15:04:28 2011 -0400
tree: 3223e7805eacdb25cc22b311261bff321136b70a
parent: 6b488674368cf695a228e87e7d8e0f4f40fe4181 [diff]
diff --git a/system/libraries/Javascript.php b/system/libraries/Javascript.php
index 167859a..34e0d70 100644
--- a/system/libraries/Javascript.php
+++ b/system/libraries/Javascript.php

@@ -855,7 +855,7 @@
 		}
 		elseif (is_string($result) OR $is_key)
 		{
-			return '"'.str_replace(array('\\', "\t", "\n", "\r", '"'), array('\\\\', '\\t', '\\n', "\\r", '\"'), $result).'"';
+			return '"'.str_replace(array('\\', "\t", "\n", "\r", '"', '/'), array('\\\\', '\\t', '\\n', "\\r", '\"', '\/'), $result).'"';			
 		}
 		elseif (is_scalar($result))
 		{
commit	f1bd6fa78a3235ade2365a43bb5124ff72807c96	[log] [tgz]
author	Pascal Kriete <pascal.kriete@ellislab.com>	Tue Apr 05 15:04:28 2011 -0400
committer	Pascal Kriete <pascal.kriete@ellislab.com>	Tue Apr 05 15:04:28 2011 -0400
tree	3223e7805eacdb25cc22b311261bff321136b70a
parent	6b488674368cf695a228e87e7d8e0f4f40fe4181 [diff]