From 3c67f77555e636f949588c049c2074c70a1cbe33 Mon Sep 17 00:00:00 2001
From: Ted Trask <ttrask01@yahoo.com>
Date: Thu, 15 Jan 2009 21:44:39 +0000
Subject: Modified html.lua and viewlibrary.lua and all html files to
 html_escape variables before displaying them.

git-svn-id: svn://svn.alpinelinux.org/acf/alpine-baselayout/trunk@1678 ab2d0c66-481e-0410-8bed-d214d4d58bed
---
 interfaces-update-html.lsp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'interfaces-update-html.lsp')

diff --git a/interfaces-update-html.lsp b/interfaces-update-html.lsp
index d205c03..f796beb 100644
--- a/interfaces-update-html.lsp
+++ b/interfaces-update-html.lsp
@@ -151,7 +151,7 @@ io.write("</span>")
 --]]
 %>
 
-<h1><%= form.label %><% if page_info.action == "update" then io.write(" - "..form.value.name.value) end %></h1>
+<h1><%= html.html_escape(form.label) %><% if page_info.action == "update" then io.write(html.html_escape(" - "..form.value.name.value)) end %></h1>
 <%
 	if page_info.action == "update" then
 		form.value.name.readonly = true
-- 
cgit v1.2.3