[freeside-commits] freeside/httemplate/view/cust_main notes.html, 1.9, 1.10
Mark Wells
mark at wavetail.420.am
Wed Mar 24 18:37:21 PDT 2010
- Previous message: [freeside-commits] freeside/FS/FS Mason.pm,1.30,1.31
- Next message: [freeside-commits] freeside/httemplate/elements header.html, 1.41, 1.42 searchbar-address2.html, NONE, 1.1 searchbar-cust_bill.html, NONE, 1.1 searchbar-cust_main.html, NONE, 1.1 searchbar-cust_svc.html, NONE, 1.1 searchbar-prospect.html, NONE, 1.1 searchbar-ticket.html, NONE, 1.1
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Update of /home/cvs/cvsroot/freeside/httemplate/view/cust_main
In directory wavetail.420.am:/tmp/cvs-serv22689/httemplate/view/cust_main
Modified Files:
notes.html
Log Message:
RT#6226: security fix for customer notes
Index: notes.html
===================================================================
RCS file: /home/cvs/cvsroot/freeside/httemplate/view/cust_main/notes.html,v
retrieving revision 1.9
retrieving revision 1.10
diff -u -w -d -r1.9 -r1.10
--- notes.html 16 Mar 2010 02:52:32 -0000 1.9
+++ notes.html 25 Mar 2010 01:37:19 -0000 1.10
@@ -53,7 +53,7 @@
<% $note->otaker%>
</TD>
<TD CLASS="grid" BGCOLOR="<% $bgcolor %>">
- <%$note->comments%>
+ <% $note->comments | defang %>
</TD>
% if($edit) {
<TD CLASS="grid" BGCOLOR="<% $bgcolor %>"><% $edit %></TD>
@@ -67,6 +67,8 @@
% }
<%init>
+use HTML::Defang;
+
my $conf = new FS::Conf;
my $curuser = $FS::CurrentUser::CurrentUser;
- Previous message: [freeside-commits] freeside/FS/FS Mason.pm,1.30,1.31
- Next message: [freeside-commits] freeside/httemplate/elements header.html, 1.41, 1.42 searchbar-address2.html, NONE, 1.1 searchbar-cust_bill.html, NONE, 1.1 searchbar-cust_main.html, NONE, 1.1 searchbar-cust_svc.html, NONE, 1.1 searchbar-prospect.html, NONE, 1.1 searchbar-ticket.html, NONE, 1.1
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the freeside-commits
mailing list