diff options
author | Ted Trask <ttrask01@yahoo.com> | 2009-01-15 21:44:39 +0000 |
---|---|---|
committer | Ted Trask <ttrask01@yahoo.com> | 2009-01-15 21:44:39 +0000 |
commit | a009a60dd69a2fd67699dbf3183398779ec5721e (patch) | |
tree | 7f4c66f79d574bee51256f4e4610e6b7c65d201e /squid-listfiles-html.lsp | |
parent | c26612b5fe2867d6da9a7c31689e186a05ae6cff (diff) | |
download | acf-squid-a009a60dd69a2fd67699dbf3183398779ec5721e.tar.bz2 acf-squid-a009a60dd69a2fd67699dbf3183398779ec5721e.tar.xz |
Modified html.lua and viewlibrary.lua and all html files to html_escape variables before displaying them.
git-svn-id: svn://svn.alpinelinux.org/acf/squid/trunk@1678 ab2d0c66-481e-0410-8bed-d214d4d58bed
Diffstat (limited to 'squid-listfiles-html.lsp')
-rw-r--r-- | squid-listfiles-html.lsp | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/squid-listfiles-html.lsp b/squid-listfiles-html.lsp index 0fc6a1e..1fbc41a 100644 --- a/squid-listfiles-html.lsp +++ b/squid-listfiles-html.lsp @@ -22,7 +22,7 @@ require("viewfunctions") <%= html.link{value=page_info.script..page_info.prefix..page_info.controller.."/deletefile?filename="..file, label="Delete "} %> <% end %> </TD> - <TD style="white-space:nowrap;"><%= file %></TD> + <TD style="white-space:nowrap;"><%= html.html_escape(file) %></TD> </TR> <% end %> </TABLE> @@ -30,7 +30,7 @@ require("viewfunctions") <% if viewlibrary and viewlibrary.dispatch_component and session.permissions.squid.createfile then local createform = viewlibrary.dispatch_component("createfile", nil, true) %> -<H2><%= createform.label %></H2> +<H2><%= html.html_escape(createform.label) %></H2> <% createform.action = page_info.script .. page_info.prefix .. page_info.controller .. "/createfile" displayform(createform) |