stian/gallery3
1
0
Fork 0
mirror of https://github.com/Pathduck/gallery3.git synced 2026-05-26 06:19:10 -04:00
Code Issues Actions Packages Projects Releases Wiki Activity

XSS / style fixes for newly detected issues (after fixing XSS scanner)

Browse Source
This commit is contained in:
Andy Staudacher
2009-09-01 01:28:52 -07:00
parent 94c201f265
commit 53711225ac
7 changed files with 10 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
modules/comment/views/admin_comments.html.php
View File

@@ -1,7 +1,7 @@
<?php defined("SYSPATH") or die("No direct script access.") ?>
<script type="text/javascript">
var set_state_url =
"<?= url::site("admin/comments/set_state/__ID__/__STATE__?csrf=$csrf") ?>";
<?= html::js_string(url::site("admin/comments/set_state/__ID__/__STATE__?csrf=$csrf")) ?>;
function set_state(state, id) {
$.get(set_state_url.replace("__STATE__", state).replace("__ID__", id),
{},
@@ -12,7 +12,7 @@
}
var delete_url =
"<?= url::site("admin/comments/delete/__ID__?csrf=$csrf") ?>";
<?= html::js_string(url::site("admin/comments/delete/__ID__?csrf=$csrf")) ?>;
function del(id) {
$.get(delete_url.replace("__ID__", id),
@@ -24,7 +24,7 @@
}
function update_menu() {
$.get("<?= url::site("admin/comments/menu_labels") ?>", {},
$.get(<?= html::js_string(url::site("admin/comments/menu_labels")) ?>, {},
function(data) {
for (var i = 0; i < data.length; i++) {
$("#gAdminCommentsMenu li:eq(" + i + ") a").html(data[i]);