diff options
| author | justdave%bugzilla.org <> | 2004-07-10 23:51:23 +0200 |
|---|---|---|
| committer | justdave%bugzilla.org <> | 2004-07-10 23:51:23 +0200 |
| commit | 4e635c0676e60f4bf0af8fc76121ed41dfc2e092 (patch) | |
| tree | f553d7acc62dc5674e730dd5aeacc9a4677a104f /Bugzilla | |
| parent | 33a8d18457464cc379635b6b519c239938ce3690 (diff) | |
| download | bugzilla-4e635c0676e60f4bf0af8fc76121ed41dfc2e092.tar.gz bugzilla-4e635c0676e60f4bf0af8fc76121ed41dfc2e092.tar.xz | |
Bug 238797: minor adjustment to javascript filters to prevent tags inserted in product, component, and flag names from causing problems.
r=gerv, a=justdave
Diffstat (limited to 'Bugzilla')
| -rw-r--r-- | Bugzilla/Template.pm | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Bugzilla/Template.pm b/Bugzilla/Template.pm index cb6b54c90..cddd33ba4 100644 --- a/Bugzilla/Template.pm +++ b/Bugzilla/Template.pm @@ -229,7 +229,7 @@ sub create { # and newlines/carriage returns escaped for use in JS strings. js => sub { my ($var) = @_; - $var =~ s/([\\\'\"])/\\$1/g; + $var =~ s/([\\\'\"\/])/\\$1/g; $var =~ s/\n/\\n/g; $var =~ s/\r/\\r/g; $var =~ s/\@/\\x40/g; # anti-spam for email addresses |