yolinlin/aowow
1
0
Fork 0
mirror of https://github.com/Sarjuuk/aowow.git synced 2025-11-29 15:58:16 +08:00
Code Issues Packages Projects Releases Wiki Activity

Template/Escaped Strings

Browse Source 
* escape creature subnames in DetailPage
 * escape creature names & subnames in Tooltips
 * js escape inherited filter froms
This commit is contained in:
Sarjuuk
2020-12-19 00:04:35 +01:00
parent 5b414500a7
commit 467a31fa3b
3 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
includes/types/creature.class.php
View File

@@ -81,10 +81,10 @@ class CreatureList extends BaseType
$row3[] = '('.$_.')';
$x = '<table>';
$x .= '<tr><td><b class="q">'.$this->getField('name', true).'</b></td></tr>';
$x .= '<tr><td><b class="q">'.Util::htmlEscape($this->getField('name', true)).'</b></td></tr>';
if ($sn = $this->getField('subname', true))
$x .= '<tr><td>'.$sn.'</td></tr>';
$x .= '<tr><td>'.Util::htmlEscape($sn).'</td></tr>';
$x .= '<tr><td>'.implode(' ', $row3).'</td></tr>';