diff options
| author | Andy Staudacher <andy.st@gmail.com> | 2009-08-29 13:41:18 -0700 |
|---|---|---|
| committer | Andy Staudacher <andy.st@gmail.com> | 2009-08-29 13:41:18 -0700 |
| commit | d5660d2d3ea6e8172272f1eb27e8071a1a42d87b (patch) | |
| tree | 814fe98dbf50922698fbbb6dd63664f0d2c84668 /themes/admin_default | |
| parent | 83344b9e7d5bdde05956a0a5c0b6578e19974066 (diff) | |
Fixing all detected XSS vectors in PHP->JS code.
Xss: Rename UNKNOWN back to DIRTY, JS_XSS to DIRTY_JS.
(using a different flag value to highlight potential XSS vectors in JS)
Diffstat (limited to 'themes/admin_default')
| -rw-r--r-- | themes/admin_default/views/admin.html.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/themes/admin_default/views/admin.html.php b/themes/admin_default/views/admin.html.php index d27f9260..61821428 100644 --- a/themes/admin_default/views/admin.html.php +++ b/themes/admin_default/views/admin.html.php @@ -23,7 +23,7 @@ <?= $theme->script("gallery.common.js") ?> <? /* MSG_CANCEL is required by gallery.dialog.js */ ?> <script type="text/javascript"> - var MSG_CANCEL = "<?= t('Cancel') ?>"; + var MSG_CANCEL = "<?= t('Cancel')->for_js() ?>"; </script> <?= $theme->script("gallery.dialog.js") ?> <?= $theme->script("superfish/js/superfish.js") ?> |