r13424 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r13423‎ \| r13424 \| r13425 >
Date:	04:09, 2 April 2006
Author:	brion
Status:	old
Tags:
Comment:	Live fix: escape <, >, and " chars that sneak into tables, etc due to parser ordering bugs
Modified paths:	/trunk/phase3/includes/Sanitizer.php (modified) (history)

Diff [purge]

Index: trunk/phase3/includes/Sanitizer.php
—	—	@@ -577,6 +577,9 @@
578	578	# Templates and links may be expanded in later parsing,
579	579	# creating invalid or dangerous output. Suppress this.
580	580	$value = strtr( $value, array(
	581	+ '<' => '<', // This should never happen,
	582	+ '>' => '>', // we've received invalid input
	583	+ '"' => '"', // which should have been escaped.
581	584	'{' => '{',
582	585	'[' => '[',
583	586	"''" => '''',

01:58, 13 October 2010 😂 (talk | contribs) changed the status of r13424 [removed: new added: old]