Update of /cvsroot/wtf-tracker/wtf/templates/pages/admin
In directory sc8-pr-cvs9.sourceforge.net:/tmp/cvs-serv7809/templates/pages/admin
Modified Files:
authz.tmpl table_data.tmpl task_area.tmpl users.tmpl
Log Message:
Changes to fix bug 1618430 re: &s and 's not getting properly escaped in HTML and Javascript
Index: users.tmpl
===================================================================
RCS file: /cvsroot/wtf-tracker/wtf/templates/pages/admin/users.tmpl,v
retrieving revision 1.1.1.1
retrieving revision 1.2
diff -C2 -d -r1.1.1.1 -r1.2
*** users.tmpl 18 Oct 2006 16:52:50 -0000 1.1.1.1
--- users.tmpl 20 Dec 2006 00:04:32 -0000 1.2
***************
*** 31,36 ****
<tmpl_loop name="employees">
<tr>
! <td><tmpl_var name="name"></td>
! <td><tmpl_var name="username"></td>
<td class="checkbox">
<input type="checkbox"
--- 31,36 ----
<tmpl_loop name="employees">
<tr>
! <td><tmpl_var name="name" escape="html"></td>
! <td><tmpl_var name="username" escape="html"></td>
<td class="checkbox">
<input type="checkbox"
***************
*** 51,55 ****
<option value="<tmpl_var name="id">"
<tmpl_if name="selected">selected="selected"</tmpl_if>
! ><tmpl_var name="name"></option>
</tmpl_loop>
</select>
--- 51,55 ----
<option value="<tmpl_var name="id">"
<tmpl_if name="selected">selected="selected"</tmpl_if>
! ><tmpl_var name="name" escape="html"></option>
</tmpl_loop>
</select>
***************
*** 60,64 ****
<option value="<tmpl_var name="id">"
<tmpl_if name="selected">selected="selected"</tmpl_if>
! ><tmpl_var name="name"></option>
</tmpl_loop>
</select>
--- 60,64 ----
<option value="<tmpl_var name="id">"
<tmpl_if name="selected">selected="selected"</tmpl_if>
! ><tmpl_var name="name" escape="html"></option>
</tmpl_loop>
</select>
Index: table_data.tmpl
===================================================================
RCS file: /cvsroot/wtf-tracker/wtf/templates/pages/admin/table_data.tmpl,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -d -r1.5 -r1.6
*** table_data.tmpl 2 Dec 2006 22:37:50 -0000 1.5
--- table_data.tmpl 20 Dec 2006 00:04:32 -0000 1.6
***************
*** 98,102 ****
</tmpl_if>
<tmpl_if name="has_description">
! <td><tmpl_var name="description"></td>
</tmpl_if>
</tr>
--- 98,102 ----
</tmpl_if>
<tmpl_if name="has_description">
! <td><tmpl_var name="description" escape="html"></td>
</tmpl_if>
</tr>
Index: task_area.tmpl
===================================================================
RCS file: /cvsroot/wtf-tracker/wtf/templates/pages/admin/task_area.tmpl,v
retrieving revision 1.3
retrieving revision 1.4
diff -C2 -d -r1.3 -r1.4
*** task_area.tmpl 2 Dec 2006 22:37:50 -0000 1.3
--- task_area.tmpl 20 Dec 2006 00:04:32 -0000 1.4
***************
*** 15,19 ****
<th>Task Name</th>
<tmpl_loop name="areas">
! <th class="task_areas"><tmpl_var name="name"></th>
</tmpl_loop>
</tr>
--- 15,19 ----
<th>Task Name</th>
<tmpl_loop name="areas">
! <th class="task_areas"><tmpl_var name="name" escape="html"></th>
</tmpl_loop>
</tr>
Index: authz.tmpl
===================================================================
RCS file: /cvsroot/wtf-tracker/wtf/templates/pages/admin/authz.tmpl,v
retrieving revision 1.2
retrieving revision 1.3
diff -C2 -d -r1.2 -r1.3
*** authz.tmpl 20 Nov 2006 02:53:08 -0000 1.2
--- authz.tmpl 20 Dec 2006 00:04:32 -0000 1.3
***************
*** 13,17 ****
<th>Employee</th>
<tmpl_loop name="authz_list">
! <th><tmpl_var name="name"></th>
</tmpl_loop>
</tr>
--- 13,17 ----
<th>Employee</th>
<tmpl_loop name="authz_list">
! <th><tmpl_var name="name" escape="html"></th>
</tmpl_loop>
</tr>
|
