Closed Bug 670169 Opened 13 years ago Closed 13 years ago

Escape '>' in js filter

Categories

(Bugzilla :: User Interface, defect)

Product:
Bugzilla
Component:
User Interface
Version:
4.0.1
Type:
defect
Priority:
Not set
Severity:
minor

Tracking

()

Status:
RESOLVED FIXED
Milestone:
Bugzilla 4.2

People

(Reporter: reed, Assigned: reed)

Details

Attachments

(1 file)

patch - v1
407 bytes, patch
LpSolit
: review+
Details | Diff | Splinter Review
Attached patch patch - v1Splinter Review 
I noticed this while digging into another bug. We don't escape '>' in the js filter. This isn't a security issue, afaict, as we do escape '<'. However, we should be consistent and escape both, as we do in all the other filters.
Attachment #544836 - Flags: review?(LpSolit)
Comment on attachment 544836 [details] [diff] [review]
patch - v1

Sure, why not. r=LpSolit
Attachment #544836 - Flags: review?(LpSolit) → review+
Flags: approval+
Committing to: bzr+ssh://bzr.mozilla.org/bugzilla/trunk/
modified Bugzilla/Template.pm
Committed revision 7853.
Status: ASSIGNED → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: