summaryrefslogtreecommitdiffstats
path: root/template/default/show
diff options
context:
space:
mode:
authorbbaetz%student.usyd.edu.au <>2002-04-07 13:13:31 +0200
committerbbaetz%student.usyd.edu.au <>2002-04-07 13:13:31 +0200
commit91341bcfc6d9e2f06b3abf3f73e05c2c60fbd30e (patch)
treeae48a5143c8a977e8a15bc2ad9faf1defd38f70b /template/default/show
parentae8a18de80c43febc782c4f398e75fdf89281601 (diff)
downloadbugzilla-91341bcfc6d9e2f06b3abf3f73e05c2c60fbd30e.tar.gz
bugzilla-91341bcfc6d9e2f06b3abf3f73e05c2c60fbd30e.tar.xz
Bug 133423 - Audit templates for FILTER usage
r=gerv, justdave
Diffstat (limited to 'template/default/show')
-rw-r--r--template/default/show/comments.tmpl2
-rw-r--r--template/default/show/multiple.tmpl8
-rw-r--r--template/default/show/show_bug.html.tmpl3
3 files changed, 7 insertions, 6 deletions
diff --git a/template/default/show/comments.tmpl b/template/default/show/comments.tmpl
index 14828175d..b020caa0f 100644
--- a/template/default/show/comments.tmpl
+++ b/template/default/show/comments.tmpl
@@ -39,7 +39,7 @@
<br>
<i>------- Additional Comment
<a name="c[% count %]" href="#c[% count %]">#[% count %]</a> From
- <a href="mailto:[% comment.email %]">[% comment.name %]</a>
+ <a href="mailto:[% comment.email FILTER html %]">[% comment.name FILTER html %]</a>
[%+ comment.time %] -------
</i>
[% END %]
diff --git a/template/default/show/multiple.tmpl b/template/default/show/multiple.tmpl
index 2673c5457..8313323aa 100644
--- a/template/default/show/multiple.tmpl
+++ b/template/default/show/multiple.tmpl
@@ -96,7 +96,7 @@
<td colspan="2">
[% IF Param('usetargetmilestone') %]
<b>Target Milestone:</b>&nbsp;
- [% bug.target_milestone %]
+ [% bug.target_milestone FILTER html %]
[% END %]
</td>
</tr>
@@ -109,14 +109,14 @@
<tr>
<td colspan="4">
- <b>Summary:</b>&nbsp;[% bug.short_desc %]
+ <b>Summary:</b>&nbsp;[% bug.short_desc FILTER html %]
</td>
</tr>
[% IF use_keywords %]
<tr>
<td colspan="4">
- <b>Keywords: </b>&nbsp;[% bug.keywords %]
+ <b>Keywords: </b>&nbsp;[% bug.keywords FILTER html %]
</td>
</tr>
[% END %]
@@ -151,6 +151,6 @@
[% BLOCK cell %]
<td>
<b>[% attr.description%]:</b>&nbsp;
- [% bug.${attr.name} %]
+ [% bug.${attr.name} FILTER html %]
</td>
[% END %]
diff --git a/template/default/show/show_bug.html.tmpl b/template/default/show/show_bug.html.tmpl
index c6f7deb2b..9b77c23a2 100644
--- a/template/default/show/show_bug.html.tmpl
+++ b/template/default/show/show_bug.html.tmpl
@@ -19,11 +19,12 @@
# Contributor(s): Gervase Markham <gerv@gerv.net>
#%]
+[% filtered_desc = bug.short_desc FILTER html %]
[% UNLESS header_done %]
[% INCLUDE global/header
title = "Bug $bug.bug_id - $bug.short_desc"
h1 = "Bugzilla Bug $bug.bug_id"
- h2 = bug.short_desc
+ h2 = filtered_desc
extra = navigation_links()
%]
[% END %]