use already established methods

openmrs · Oct 1, 2024 · 80656c4 · 80656c4
1 parent a12db13
commit 80656c4
Showing 1 changed file with 2 additions and 8 deletions.
diff --git a/omod/src/main/java/org/openmrs/web/servlet/QuickReportServlet.java b/omod/src/main/java/org/openmrs/web/servlet/QuickReportServlet.java
@@ -45,6 +45,7 @@
 import org.openmrs.util.OpenmrsConstants;
 import org.openmrs.util.PrivilegeConstants;
 import org.openmrs.web.WebConstants;
+import org.openmrs.web.WebUtil;
 
 public class QuickReportServlet extends HttpServlet {
 
@@ -71,7 +72,7 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response) t
 			return;
 		}
 
-		reportType = sanitizeInput(reportType);
+		reportType = WebUtil.escapeHTML(reportType);
 
 		try {
 			Velocity.init();
@@ -362,11 +363,4 @@ private String getTemplate(String reportType) {
 
 		return template;
 	}
-
-	private String sanitizeInput(String input) {
-		if (input == null) {
-			return null;
-		}
-		return input.replaceAll("[<>\"'%;()&+]", "");
-	}
 }