svn commit: r620550 - /roller/trunk/apps/weblogger/web/WEB-INF/velocity/feeds.vm

Mon, 11 Feb 2008 09:47:54 -0800 

Author: snoopdave
Date: Mon Feb 11 09:47:22 2008
New Revision: 620550

URL: http://svn.apache.org/viewvc?rev=620550&view=rev
Log:
Fix for ROL-1655: enclosure URLs should be escaped
http://opensource.atlassian.com/projects/roller/browse/ROL-1655

Modified:
    roller/trunk/apps/weblogger/web/WEB-INF/velocity/feeds.vm

Modified: roller/trunk/apps/weblogger/web/WEB-INF/velocity/feeds.vm
URL: 
http://svn.apache.org/viewvc/roller/trunk/apps/weblogger/web/WEB-INF/velocity/feeds.vm?rev=620550&r1=620549&r2=620550&view=diff
==============================================================================
--- roller/trunk/apps/weblogger/web/WEB-INF/velocity/feeds.vm (original)
+++ roller/trunk/apps/weblogger/web/WEB-INF/velocity/feeds.vm Mon Feb 11 
09:47:22 2008
@@ -48,7 +48,7 @@
 #set( $mc_type = $entry.findEntryAttribute("att_mediacast_type") )
 #set( $mc_length = $entry.findEntryAttribute("att_mediacast_length") )
 #if( $mc_url && $mc_length && $mc_type )
-        <link rel="enclosure" type="$mc_type" length="$mc_length" 
href="$mc_url"/>
+        <link rel="enclosure" type="$mc_type" length="$mc_length" 
href="$utils.escapeXML($mc_url)"/>
 #set($mc_url = false) #set($mc_type = false) #set($mc_length = false)#end
     </entry>
 #end
@@ -76,7 +76,7 @@
     #set( $mc_type = $entry.findEntryAttribute("att_mediacast_type") )
     #set( $mc_length = $entry.findEntryAttribute("att_mediacast_length") )
     #if( $mc_url && $mc_length && $mc_type )
-       <enclosure url="$mc_url" type="$mc_type" length="$mc_length" />
+       <enclosure url="$utils.escapeXML($mc_url)" type="$mc_type" 
length="$mc_length" />
        #set($mc_url = false) #set($mc_type = false) #set($mc_length = false)
     #end
     #if( $website.allowComments )

Reply via email to