From 90a79e7fae5cb09269b2dccdeea06d7e04741e83 Mon Sep 17 00:00:00 2001
From: Pierre <pierre@hubert.fr>
Date: Fri, 20 Apr 2018 14:03:41 +0200
Subject: [PATCH] Fixed security issue

---
 assets/js/components/conversations/unreadDropdown.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/assets/js/components/conversations/unreadDropdown.js b/assets/js/components/conversations/unreadDropdown.js
index e7fa71da..7bcee0f0 100644
--- a/assets/js/components/conversations/unreadDropdown.js
+++ b/assets/js/components/conversations/unreadDropdown.js
@@ -226,7 +226,7 @@ ComunicWeb.components.conversations.unreadDropdown = {
 				appendTo: convLink,
 				type: "p",
 				class: "message-content",
-				innerHTML: conversation.message
+				innerHTML: removeHtmlTags(conversation.message)
 			});
 
 			//Make the conversation link lives