https://bugzilla.wikimedia.org/show_bug.cgi?id=18620
Roan Kattouw <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Keywords|need-review |reviewed Resolution| |FIXED --- Comment #8 from Roan Kattouw <[email protected]> 2009-04-29 16:00:12 UTC --- (In reply to comment #7) > Created an attachment (id=6070) --> (https://bugzilla.wikimedia.org/attachment.cgi?id=6070) [details] > updated, use Xml::tags(); still against r49962 > > I guess you're right; tried and it worked fine. It definitely needs to be > tags(); using elements escapes things like links. Patch looks OK, committed in r50046 > htmlspecialchars is the thing > to use to disable tags, right? (Not relevant for this, but will be in my > rewrite of SpecialAllmessages). > Yes, but you probably want to use Xml:: functions there as well, as they sanitize stuff for you. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
