details: https://code.openbravo.com/erp/devel/pi/rev/146581313d40
changeset: 16849:146581313d40
user: Asier Lostalé <asier.lostale <at> openbravo.com>
date: Fri Jun 15 16:33:38 2012 +0200
summary: fixed bug 18729: Fixed javascript properties escape in selector
fields
diffstat:
modules/org.openbravo.userinterface.selector/src/org/openbravo/userinterface/selector/SelectorComponent.java
| 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)
diffs (20 lines):
diff -r 9dc141df1f43 -r 146581313d40
modules/org.openbravo.userinterface.selector/src/org/openbravo/userinterface/selector/SelectorComponent.java
---
a/modules/org.openbravo.userinterface.selector/src/org/openbravo/userinterface/selector/SelectorComponent.java
Fri Jun 15 16:17:10 2012 +0200
+++
b/modules/org.openbravo.userinterface.selector/src/org/openbravo/userinterface/selector/SelectorComponent.java
Fri Jun 15 16:33:38 2012 +0200
@@ -29,6 +29,7 @@
import javax.inject.Inject;
+import org.apache.commons.lang.StringEscapeUtils;
import org.apache.log4j.Logger;
import org.codehaus.jettison.json.JSONException;
import org.codehaus.jettison.json.JSONObject;
@@ -919,7 +920,7 @@
}
public void setStringValue(String value) {
- this.value = "'" + value + "'";
+ this.value = "'" + StringEscapeUtils.escapeJavaScript(value) + "'";
}
public void setValue(String value) {
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Openbravo-commits mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openbravo-commits
