diff options
| author | Andy Staudacher <andy.st@gmail.com> | 2009-08-29 13:41:18 -0700 |
|---|---|---|
| committer | Andy Staudacher <andy.st@gmail.com> | 2009-08-29 13:41:18 -0700 |
| commit | d5660d2d3ea6e8172272f1eb27e8071a1a42d87b (patch) | |
| tree | 814fe98dbf50922698fbbb6dd63664f0d2c84668 /themes/default/views/movie.html.php | |
| parent | 83344b9e7d5bdde05956a0a5c0b6578e19974066 (diff) | |
Fixing all detected XSS vectors in PHP->JS code.
Xss: Rename UNKNOWN back to DIRTY, JS_XSS to DIRTY_JS.
(using a different flag value to highlight potential XSS vectors in JS)
Diffstat (limited to 'themes/default/views/movie.html.php')
| -rw-r--r-- | themes/default/views/movie.html.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/themes/default/views/movie.html.php b/themes/default/views/movie.html.php index 1f25a626..75d51eff 100644 --- a/themes/default/views/movie.html.php +++ b/themes/default/views/movie.html.php @@ -20,7 +20,7 @@ </div> <script type="text/javascript"> - var ADD_A_COMMENT = "<?= t("Add a comment") ?>"; + var ADD_A_COMMENT = "<?= t("Add a comment")->for_js() ?>"; </script> <?= $theme->photo_bottom() ?> </div> |