diff options
| author | Ted Trask <ttrask01@yahoo.com> | 2009-01-15 21:44:39 +0000 |
|---|---|---|
| committer | Ted Trask <ttrask01@yahoo.com> | 2009-01-15 21:44:39 +0000 |
| commit | 61131a0d088c5fd27e99291714903050ddb0d41a (patch) | |
| tree | e79f7d51e9a7814091aa8ec526d0d6e72e978b20 /dhcp-listsubnets-html.lsp | |
| parent | 168d1ee9a8eaf3142e76e4e8b04cc39b5b1769c3 (diff) | |
| download | acf-dhcp-61131a0d088c5fd27e99291714903050ddb0d41a.tar.bz2 acf-dhcp-61131a0d088c5fd27e99291714903050ddb0d41a.tar.xz | |
Modified html.lua and viewlibrary.lua and all html files to html_escape variables before displaying them.
git-svn-id: svn://svn.alpinelinux.org/acf/dhcp/trunk@1678 ab2d0c66-481e-0410-8bed-d214d4d58bed
Diffstat (limited to 'dhcp-listsubnets-html.lsp')
| -rw-r--r-- | dhcp-listsubnets-html.lsp | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/dhcp-listsubnets-html.lsp b/dhcp-listsubnets-html.lsp index 242afe1..db302d0 100644 --- a/dhcp-listsubnets-html.lsp +++ b/dhcp-listsubnets-html.lsp @@ -17,14 +17,14 @@ <%= html.link{value=page_info.script..page_info.prefix..page_info.controller.."/editsubnet?subnet="..subnet.."&redir="..page_info.orig_action, label="Edit "} %> <%= html.link{value=page_info.script..page_info.prefix..page_info.controller.."/delsubnet?subnet="..subnet.."&redir="..page_info.orig_action, label="Delete "} %> </TD> - <TD style="white-space:nowrap;"><%= subnet %></TD> + <TD style="white-space:nowrap;"><%= html.html_escape(subnet) %></TD> </TR> <% end %> </TABLE> <dt>Add new subnet</dt> -<dd><form action="<%= page_info.script .. page_info.prefix .. page_info.controller .. "/createsubnet" %>" method="POST"> -<input class="hidden" type="hidden" name="redir" value="<%= page_info.orig_action %>" > +<dd><form action="<%= html.html_escape(page_info.script .. page_info.prefix .. page_info.controller .. "/createsubnet") %>" method="POST"> +<input class="hidden" type="hidden" name="redir" value="<%= html.html_escape(page_info.orig_action) %>" > <input type=submit value="New" class="submit"> </form></dd> </DL> |