Bug 386942: [SECURITY] User Agent text should be HTML escaped - Patch by FrÃ©dÃ©ric...

author lpsolit%gmail.com <>

Thu, 23 Aug 2007 20:37:55 +0000 (20:37 +0000)

committer lpsolit%gmail.com <>

Thu, 23 Aug 2007 20:37:55 +0000 (20:37 +0000)
author lpsolit%gmail.com <>
Thu, 23 Aug 2007 20:37:55 +0000 (20:37 +0000)
committer lpsolit%gmail.com <>
Thu, 23 Aug 2007 20:37:55 +0000 (20:37 +0000)
diff --git a/template/en/default/bug/create/create-guided.html.tmpl b/template/en/default/bug/create/create-guided.html.tmpl

index d84a6d3a6470ed9ddf175db2644d080b94ba1187..1da2899f80a0c52dd8ecd9df9bc55c3f3806ee49 100644 (file)
--- a/template/en/default/bug/create/create-guided.html.tmpl
+++ b/template/en/default/bug/create/create-guided.html.tmpl
@@ -275,7 +275,7 @@ function PutDescription() {
        <b>Build Identifier<br>(User Agent)</b>
      </td>
      <td valign="top">
-      <input type="text" size="80" name="buildid" value="[% buildid %]">
+      <input type="text" size="80" name="buildid" value="[% buildid FILTER html %]">
        <p>
          This identifies exactly the version of the product you were using.
          If reporting [% terms.abug %] in Mozilla or Firefox,
diff --git a/template/en/default/filterexceptions.pl b/template/en/default/filterexceptions.pl

index dbbab8e5157394a2d16f5724ee7173f3853291ec..ab0a752471d4ff8e8dd196d5b2341987049602c1 100644 (file)
--- a/template/en/default/filterexceptions.pl
+++ b/template/en/default/filterexceptions.pl
@@ -416,7 +416,6 @@
  'bug/create/create-guided.html.tmpl' => [
    'matches.0', 
    'tablecolour',
-  'buildid',
    'sel',
    'productstring', 
  ],
author	lpsolit%gmail.com <>
	Thu, 23 Aug 2007 20:37:55 +0000 (20:37 +0000)
committer	lpsolit%gmail.com <>
	Thu, 23 Aug 2007 20:37:55 +0000 (20:37 +0000)
template/en/default/bug/create/create-guided.html.tmpl		patch \| blob \| blame \| history
template/en/default/filterexceptions.pl		patch \| blob \| blame \| history