[freeside-commits] branch FREESIDE_3_BRANCH updated. 78d0e4b3ed39b4f44aba115c6711cfdde1a02d72
Ivan
ivan at 420.am
Fri Jun 7 23:42:01 PDT 2013
The branch, FREESIDE_3_BRANCH has been updated
via 78d0e4b3ed39b4f44aba115c6711cfdde1a02d72 (commit)
from 041e476beaa6a200ffff8db50671f2b4245c86b8 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 78d0e4b3ed39b4f44aba115c6711cfdde1a02d72
Author: Ivan Kohler <ivan at freeside.biz>
Date: Fri Jun 7 23:41:57 2013 -0700
fix XSS
diff --git a/httemplate/elements/search-cust_main.html b/httemplate/elements/search-cust_main.html
index e8c645e..ba6a479 100644
--- a/httemplate/elements/search-cust_main.html
+++ b/httemplate/elements/search-cust_main.html
@@ -19,7 +19,7 @@ Example:
NAME = "<% $field %>_search"
ID = "<% $field %>_search"
SIZE = "32"
- VALUE="<% $cust_main ? $cust_main->name : '(cust #, name or company)' %>"
+ VALUE="<% $cust_main ? $cust_main->name : '(cust #, name or company)' |h %>"
onFocus="clearhint_<% $field %>_search(this);"
onClick="clearhint_<% $field %>_search(this);"
onChange="smart_<% $field %>_search(this);"
-----------------------------------------------------------------------
Summary of changes:
httemplate/elements/search-cust_main.html | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
More information about the freeside-commits
mailing list