From 401b0d1301cf419ff40d7cb82d2763b13accd26a Mon Sep 17 00:00:00 2001 From: Max Kanat-Alexander Date: Wed, 19 May 2010 10:20:09 -0700 Subject: Bug 565899: Make the html_linebreak filter safe by having it first call the "html" filter r=LpSolit, a=LpSolit --- template/en/default/global/code-error.html.tmpl | 2 +- template/en/default/global/hidden-fields.html.tmpl | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) (limited to 'template') diff --git a/template/en/default/global/code-error.html.tmpl b/template/en/default/global/code-error.html.tmpl index f50f60737..e3bd3ba8b 100644 --- a/template/en/default/global/code-error.html.tmpl +++ b/template/en/default/global/code-error.html.tmpl @@ -540,7 +540,7 @@

Traceback:

-
[% traceback FILTER html FILTER html_linebreak %]
+
[% traceback FILTER html_linebreak %]
[% IF variables %]
diff --git a/template/en/default/global/hidden-fields.html.tmpl b/template/en/default/global/hidden-fields.html.tmpl
index 24f15c4f5..c141c6409 100644
--- a/template/en/default/global/hidden-fields.html.tmpl
+++ b/template/en/default/global/hidden-fields.html.tmpl
@@ -52,7 +52,7 @@
   [% ELSE %]
     [% FOREACH mvalue = cgi.param(field).slice(0) %]
       
+             value="[% mvalue FILTER html_linebreak %]">
     [% END %]
   [% END %]
 [% END %]
-- 
cgit v1.2.3-24-g4f1b