From f1314cced2dc966110bc19679b9fa0ea28053a9b Mon Sep 17 00:00:00 2001
From: Alex Pott <alex.a.pott@googlemail.com>
Date: Sun, 28 Jun 2015 15:22:33 +0100
Subject: [PATCH] Issue #2512478 by googletorp, pwolanin, G1N1: XSS on field
 edit form via label field via ckeditor

---
 core/modules/ckeditor/js/ckeditor.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/modules/ckeditor/js/ckeditor.js b/core/modules/ckeditor/js/ckeditor.js
index 4cc77aae351..4254f0010e0 100644
--- a/core/modules/ckeditor/js/ckeditor.js
+++ b/core/modules/ckeditor/js/ckeditor.js
@@ -30,7 +30,7 @@
       // Set a title on the CKEditor instance that includes the text field's
       // label so that screen readers say something that is understandable
       // for end users.
-      var label = $('label[for=' + element.getAttribute('id') + ']').text();
+      var label = $('label[for=' + element.getAttribute('id') + ']').html();
       format.editorSettings.title = Drupal.t("Rich Text Editor, !label field", {'!label': label});
 
       // CKEditor initializes itself in a read-only state if the 'disabled'