diff options
| author |   lpsolit%gmail.com <> | 2007-08-23 20:36:56 +0000 |
|---|---|---|
| committer | lpsolit%gmail.com <> | 2007-08-23 20:36:56 +0000 |
| commit | 7e84c76b339eec9bc48337dca823d5fa41012147 (patch) | |
| tree | 711359dcd1eaa9d3e75a5da0bbc3c87eddb04500 | |
| parent | Bug 393143: Release Notes for Bugzilla 2.22.3 (diff) | |
| download | bugzilla-7e84c76b339eec9bc48337dca823d5fa41012147.tar.gz bugzilla-7e84c76b339eec9bc48337dca823d5fa41012147.tar.bz2 bugzilla-7e84c76b339eec9bc48337dca823d5fa41012147.zip | |
Bug 386942: [SECURITY] User Agent text should be HTML escaped - Patch by Frédéric Buclin <LpSolit@gmail.com> r=justdave a=LpSolit
| -rw-r--r-- | template/en/default/bug/create/create-guided.html.tmpl | 2 | ||||
| -rw-r--r-- | template/en/default/filterexceptions.pl | 1 |
2 files changed, 1 insertions, 2 deletions
diff --git a/template/en/default/bug/create/create-guided.html.tmpl b/template/en/default/bug/create/create-guided.html.tmpl index 7b5041985..59a644844 100644 --- a/template/en/default/bug/create/create-guided.html.tmpl +++ b/template/en/default/bug/create/create-guided.html.tmpl @@ -276,7 +276,7 @@ function PutDescription() { <b>Build Identifier<br>(User Agent)</b> </td> <td valign="top"> - <input type="text" size="80" name="buildid" value="[% buildid %]"> + <input type="text" size="80" name="buildid" value="[% buildid FILTER html %]"> <p> This identifies exactly the version of the product you were using. If reporting [% terms.abug %] in Mozilla or Firefox, diff --git a/template/en/default/filterexceptions.pl b/template/en/default/filterexceptions.pl index 9f33340b4..c66e80134 100644 --- a/template/en/default/filterexceptions.pl +++ b/template/en/default/filterexceptions.pl @@ -405,7 +405,6 @@ 'bug/create/create-guided.html.tmpl' => [ 'matches.0', 'tablecolour', - 'buildid', 'sel', 'productstring', ], |