amorfo77/sogo
1
0
Fork 0
mirror of https://github.com/inverse-inc/sogo.git synced 2026-04-23 22:09:29 +00:00
Code Issues Projects Releases Wiki Activity

Escape HTML in CSS dialogs

Browse Source
This commit is contained in:
Francis Lachapelle
2014-02-07 16:12:14 -05:00
parent 3a5e44e7eb
commit c94595ea7f
2 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
UI/WebServerResources/SchedulerUI.js
View File

@@ -265,7 +265,7 @@ function deleteEvent() {
content = nodes[i].allTextContent();
}
itemElement.appendChild(colorBox);
itemElement.appendChild(new Element('span').update(content));
itemElement.appendChild(new Element('span').update(content.escapeHTML()));
if (nodes[i].startDate) {
var startDate = new Date(nodes[i].startDate*1000);
var dateElement = new Element('div', {'class': 'muted'});
@@ -332,7 +332,7 @@ function deleteEvent() {
}
}
itemElement.appendChild(colorBox);
itemElement.appendChild(new Element('span').update(content));
itemElement.appendChild(new Element('span').update(content.escapeHTML()));
if (selectedCalendarCell[i].startDate) {
var startDate = new Date(selectedCalendarCell[i].startDate*1000);
var dateElement = new Element('div', {'class': 'muted'});