projects / working / Evergreen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cce7c36) | patch
Escape HTML characters in template subs
authorThomas Berezansky <tsbere@mvlc.org>
Thu, 11 Aug 2011 01:37:54 +0000 (21:37 -0400)
committerJason Etheridge <jason@esilibrary.com>
Fri, 12 Aug 2011 20:48:09 +0000 (16:48 -0400)
commitf6fe28b5bb0a9de00f0c9f701517de002bb3793a
tree9231330ee6e72a5a5b144af92f26b61b810033b5tree
parentcce7c36c36bcafb7a851f3c25337b1220fdcfe53commit | diff
Escape HTML characters in template subs

This prevents injection of random HTML from various sources.

Like bad bib records, org unit settings, patron info, etc.

Signed-off-by: Thomas Berezansky <tsbere@mvlc.org>
Signed-off-by: Jason Etheridge <jason@esilibrary.com>
Open-ILS/xul/staff_client/chrome/content/util/print.js diff | blob | history
Evergreen ILS