diff options
author | lpsolit%gmail.com <> | 2006-10-15 03:26:50 +0000 |
---|---|---|
committer | lpsolit%gmail.com <> | 2006-10-15 03:26:50 +0000 |
commit | b1ef63e5bfc0d3995245b42154686db1400b2c22 (patch) | |
tree | 0db4955b3303c2e5565d6e97e8fac62c63147117 /template/en/default/admin/products/confirm-delete.html.tmpl | |
parent | 40aae68e1263b9677285473a9205cef378b451c0 (diff) | |
download | bugs-b1ef63e5bfc0d3995245b42154686db1400b2c22.tar bugs-b1ef63e5bfc0d3995245b42154686db1400b2c22.tar.gz bugs-b1ef63e5bfc0d3995245b42154686db1400b2c22.tar.bz2 bugs-b1ef63e5bfc0d3995245b42154686db1400b2c22.tar.xz bugs-b1ef63e5bfc0d3995245b42154686db1400b2c22.zip |
Bug 206037: [SECURITY] Fix escaping/quoting in edit*.cgi scripts - Patch by Frédéric Buclin <LpSolit@gmail.com> r=justdave a=justdave
Diffstat (limited to 'template/en/default/admin/products/confirm-delete.html.tmpl')
-rw-r--r-- | template/en/default/admin/products/confirm-delete.html.tmpl | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/template/en/default/admin/products/confirm-delete.html.tmpl b/template/en/default/admin/products/confirm-delete.html.tmpl index e59dd8707..75aeb623a 100644 --- a/template/en/default/admin/products/confirm-delete.html.tmpl +++ b/template/en/default/admin/products/confirm-delete.html.tmpl @@ -56,7 +56,7 @@ [%# descriptions are intentionally not filtered to allow html content %] <td> [% IF classification.description %] - [% classification.description FILTER none %] + [% classification.description FILTER html_light %] [% ELSE %] <span style="color: red">missing</span> [% END %] @@ -78,7 +78,7 @@ [%# descriptions are intentionally not filtered to allow html content %] <td valign="top"> [% IF product.description %] - [% product.description FILTER none %] + [% product.description FILTER html_light %] [% ELSE %] <span style="color: red">missing</span> [% END %] @@ -132,7 +132,7 @@ [%# descriptions are intentionally not filtered to allow html content %] <td> [% IF c.description %] - [% c.description FILTER none %] + [% c.description FILTER html_light %] [% ELSE %] <span style="color: red">missing</span> [% END %] |