Author: sevein
Date: Fri Sep 30 14:17:20 2011
New Revision: 9887
Log:
Use esc_entities to filter input
Modified:
trunk/apps/qubit/modules/repository/templates/_contextMenu.php
Modified: trunk/apps/qubit/modules/repository/templates/_contextMenu.php
==============================================================================
--- trunk/apps/qubit/modules/repository/templates/_contextMenu.php Fri Sep
30 14:15:55 2011 (r9886)
+++ trunk/apps/qubit/modules/repository/templates/_contextMenu.php Fri Sep
30 14:17:20 2011 (r9887)
@@ -10,7 +10,7 @@
<div class="search">
<form action="<?php echo url_for(array($resource, 'module' => 'search'))
?>">
- <input type="text" name="query" value="<?php echo $sf_request->query
?>">
+ <input type="text" name="query" value="<?php echo
esc_entities($sf_request->query) ?>">
<input type="submit" value="search" class="form-submit"/>
</form>
</div>
--
You received this message because you are subscribed to the Google Groups
"Qubit Toolkit Commits" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/qubit-commits?hl=en.
