changeset a1ab4b1133ae in sao:5.2
details: https://hg.tryton.org/sao?cmd=changeset;node=a1ab4b1133ae
description:
Sanitize translated RichtText fields content
issue9453
review305991002
(grafted from b5f7ef0fe692cc57aa7ed8619f5388d14760f0e7)
diffstat:
CHANGELOG | 2 ++
src/view/form.js | 8 ++++----
2 files changed, 6 insertions(+), 4 deletions(-)
diffs (29 lines):
diff -r 5e59a9e42cc7 -r a1ab4b1133ae CHANGELOG
--- a/CHANGELOG Mon Jun 29 18:06:39 2020 +0200
+++ b/CHANGELOG Fri Jul 10 09:00:01 2020 +0200
@@ -1,3 +1,5 @@
+* Sanitize translated RichtText fields content (issue9453)
+
Version 5.2.18 - 2020-06-29
* Bug fixes (see mercurial logs for details)
* Sanitize RichtText fields content (issue9405)
diff -r 5e59a9e42cc7 -r a1ab4b1133ae src/view/form.js
--- a/src/view/form.js Mon Jun 29 18:06:39 2020 +0200
+++ b/src/view/form.js Fri Jul 10 09:00:01 2020 +0200
@@ -2038,12 +2038,12 @@
el.find('div[contenteditable]').prop('contenteditable', !value);
},
translate_widget_set: function(el, value) {
- el.find('div[contenteditable]').html(value);
+ el.find('div[contenteditable]').html(
+ Sao.HtmlSanitizer.sanitize(value || ''));
},
translate_widget_get: function(el) {
- var input = el.find('div[contenteditable]');
- this._normalize(input);
- return input.html();
+ return this._normalize_markup(
+ el.find('div[contenteditable]').html());
}
});
