diff options
| author | Andy Staudacher <andy.st@gmail.com> | 2009-08-29 13:41:18 -0700 |
|---|---|---|
| committer | Andy Staudacher <andy.st@gmail.com> | 2009-08-29 13:41:18 -0700 |
| commit | d5660d2d3ea6e8172272f1eb27e8071a1a42d87b (patch) | |
| tree | 814fe98dbf50922698fbbb6dd63664f0d2c84668 /modules/gallery/views/l10n_client.html.php | |
| parent | 83344b9e7d5bdde05956a0a5c0b6578e19974066 (diff) | |
Fixing all detected XSS vectors in PHP->JS code.
Xss: Rename UNKNOWN back to DIRTY, JS_XSS to DIRTY_JS.
(using a different flag value to highlight potential XSS vectors in JS)
Diffstat (limited to 'modules/gallery/views/l10n_client.html.php')
| -rw-r--r-- | modules/gallery/views/l10n_client.html.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/modules/gallery/views/l10n_client.html.php b/modules/gallery/views/l10n_client.html.php index c73719ca..523552c3 100644 --- a/modules/gallery/views/l10n_client.html.php +++ b/modules/gallery/views/l10n_client.html.php @@ -69,8 +69,8 @@ </div> </div> <script type="text/javascript"> - var MSG_TRANSLATE_TEXT = "<?= t("Translate Text") ?>"; - var MSG_CLOSE_X = "<?= t("X") ?>"; + var MSG_TRANSLATE_TEXT = "<?= t("Translate Text")->for_js() ?>"; + var MSG_CLOSE_X = "<?= t("X")->for_js() ?>"; var l10n_client_data = <?= json_encode($string_list) ?>; var plural_forms = <?= json_encode($plural_forms) ?>; </script> |