svn commit: r1089020 - /incubator/wookie/trunk/src/org/apache/wookie/helpers/WidgetHelper.java

Tue, 05 Apr 2011 06:06:30 -0700 

Author: scottbw
Date: Tue Apr  5 13:06:04 2011
New Revision: 1089020

URL: http://svn.apache.org/viewvc?rev=1089020&view=rev
Log:
Caught two more instances of not properly escaping XML text content

Modified:
    incubator/wookie/trunk/src/org/apache/wookie/helpers/WidgetHelper.java

Modified: incubator/wookie/trunk/src/org/apache/wookie/helpers/WidgetHelper.java
URL: 
http://svn.apache.org/viewvc/incubator/wookie/trunk/src/org/apache/wookie/helpers/WidgetHelper.java?rev=1089020&r1=1089019&r2=1089020&view=diff
==============================================================================
--- incubator/wookie/trunk/src/org/apache/wookie/helpers/WidgetHelper.java 
(original)
+++ incubator/wookie/trunk/src/org/apache/wookie/helpers/WidgetHelper.java Tue 
Apr  5 13:06:04 2011
@@ -101,7 +101,7 @@ public class WidgetHelper {
                +"\" identifier=\"" + widget.getGuid() 
                +"\" width=\"" + width
                +"\" height=\"" + height
-               + "\" version=\"" + widget.getVersion() 
+               + "\" version=\"" + 
StringEscapeUtils.escapeXml(widget.getVersion())
                + "\">\n";
                return out;
        }
@@ -111,7 +111,7 @@ public class WidgetHelper {
                if (widget.getWidgetAuthorEmail() != null) out+= " 
email=\""+widget.getWidgetAuthorEmail()+"\"";
                if (widget.getWidgetAuthorHref() != null) out+= " 
href=\""+widget.getWidgetAuthorHref()+"\"";
                out += ">";
-               if (widget.getWidgetAuthor()!=null) out += 
widget.getWidgetAuthor();
+               if (widget.getWidgetAuthor()!=null) out += 
StringEscapeUtils.escapeXml(widget.getWidgetAuthor());
                out += "</author>\n";
                return out;
        }

Reply via email to