Weakness CWE-79

Weakness CWE-116

Author: RepGraphics

package.json

@@ -1,6 +1,6 @@
 {
   "name": "nitrocraft",
-  "version": "1.2.4",
+  "version": "1.2.5",
   "private": false,
   "type": "module",
   "scripts": {

public/javascript/server-list-builder.js

@@ -116,6 +116,10 @@
     }
   }
 
+  function encodeSafeIconSource(value) {
+    return encodeURI(sanitizeIconSource(value));
+  }
+
   function setNote(element, message, isError) {
     if (!element) {
       return;
@@ -539,7 +543,7 @@
     preview.name.textContent = fallbackName;
     preview.version.textContent = state.version ? ("v" + state.version) : "";
     preview.players.textContent = players;
-    preview.icon.src = state.icon || defaults.icon;
+    preview.icon.src = encodeSafeIconSource(state.icon);
     updatePingBars(preview.ping, state.ping);
 
     scheduleMotdRender();