[Pkg-owncloud-commits] [owncloud] 53/73: Sanitize file names
David Prévot
taffit at alioth.debian.org
Fri Nov 8 23:09:10 UTC 2013
This is an automated email from the git hooks/post-receive script.
taffit pushed a commit to annotated tag v4.0.10
in repository owncloud.
commit 77eff3479da0997deeaf2f6590e48c9e79e0fa65
Author: Lukas Reschke <lukas at statuscode.ch>
Date: Fri Oct 12 15:42:15 2012 +0200
Sanitize file names
---
apps/files/js/filelist.js | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/apps/files/js/filelist.js b/apps/files/js/filelist.js
index c3eb906..22ae4d6 100644
--- a/apps/files/js/filelist.js
+++ b/apps/files/js/filelist.js
@@ -14,9 +14,9 @@ FileList={
var extension=false;
}
html+='<td class="filename" style="background-image:url('+img+')"><input type="checkbox" />';
- html+='<a class="name" href="download.php?file='+$('#dir').val().replace(/</, '<').replace(/>/, '>')+'/'+name+'"><span class="nametext">'+basename
+ html+='<a class="name" href="download.php?file='+$('#dir').val().replace(/</, '<').replace(/>/, '>')+'/'+escapeHTML(name)+'"><span class="nametext">'+escapeHTML(basename)
if(extension){
- html+='<span class="extension">'+extension+'</span>';
+ html+='<span class="extension">'+escapeHTML(extension)+'</span>';
}
html+='</span></a></td>';
if(size!='Pending'){
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-owncloud/owncloud.git
More information about the Pkg-owncloud-commits
mailing list