Umherirrender has uploaded a new change for review.
https://gerrit.wikimedia.org/r/187010
Change subject: Fully escape return value from
FileDuplicateSearchPage::formatResult
......................................................................
Fully escape return value from FileDuplicateSearchPage::formatResult
Also avoids unneeded recreation of a title object
Bug: T85864
Change-Id: I0298887e2ee5da9c1694393fb06cfa5eed0e46d3
---
M includes/specials/SpecialFileDuplicateSearch.php
1 file changed, 4 insertions(+), 3 deletions(-)
git pull ssh://gerrit.wikimedia.org:29418/mediawiki/core
refs/changes/10/187010/1
diff --git a/includes/specials/SpecialFileDuplicateSearch.php
b/includes/specials/SpecialFileDuplicateSearch.php
index 0ebbbc9..40b8641 100644
--- a/includes/specials/SpecialFileDuplicateSearch.php
+++ b/includes/specials/SpecialFileDuplicateSearch.php
@@ -204,8 +204,8 @@
$nt = $result->getTitle();
$text = $wgContLang->convert( $nt->getText() );
$plink = Linker::link(
- Title::newFromText( $nt->getPrefixedText() ),
- $text
+ $nt,
+ htmlspecialchars( $text )
);
$userText = $result->getUser( 'text' );
@@ -220,7 +220,8 @@
$user = htmlspecialchars( $userText );
}
- $time = $this->getLanguage()->userTimeAndDate(
$result->getTimestamp(), $this->getUser() );
+ $time = htmlspecialchars( $this->getLanguage()->userTimeAndDate(
+ $result->getTimestamp(), $this->getUser() ) );
return "$plink . . $user . . $time";
}
--
To view, visit https://gerrit.wikimedia.org/r/187010
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings
Gerrit-MessageType: newchange
Gerrit-Change-Id: I0298887e2ee5da9c1694393fb06cfa5eed0e46d3
Gerrit-PatchSet: 1
Gerrit-Project: mediawiki/core
Gerrit-Branch: master
Gerrit-Owner: Umherirrender <[email protected]>
_______________________________________________
MediaWiki-commits mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits
