https://bugzilla.wikimedia.org/show_bug.cgi?id=48802
Web browser: ---
Bug ID: 48802
Summary: formatNum output should be escaped
Product: MediaWiki
Version: 1.22-git
Hardware: All
OS: All
Status: UNCONFIRMED
Severity: minor
Priority: Unprioritized
Component: Internationalization
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected], [email protected],
[email protected], [email protected],
[email protected]
Classification: Unclassified
Mobile Platform: ---
formatNum output is not escaped in many places in MediaWiki, but as Nikerabbit
suggested formatNum doesn't necessarily return escaped string. Although there
is no language that uses <, > or & as digit or digit separator, we should
either escape formatNum or check if there are no special characters in language
file (separatorTransformTable, digitTransformTable).
--
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
_______________________________________________
Wikibugs-l mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
