r59984 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r59983‎ \| r59984 \| r59985 >
Date:	23:32, 11 December 2009
Author:	yaron
Status:	ok
Tags:
Comment:	Fixed some escaping issues
Modified paths:	/trunk/extensions/TemplateInfo/TemplateInfo.classes.php (modified) (history)

Diff [purge]

Index: trunk/extensions/TemplateInfo/TemplateInfo.classes.php
—	—	@@ -46,6 +46,7 @@
47	47	}
48	48
49	49	static function tableRowHTML($css_class, $data_type, $value = null) {
	50	+ $data_type = htmlspecialchars($data_type);
50	51	$content = is_null($value) ? $data_type : "$data_type: " . HTML::element('span', array('class' => 'rowValue'), $value);
51	52	$cell = HTML::rawElement('td', array('colspan' => 2), $content);
52	53	$text = HTML::rawElement('tr', array('class' => "$css_class"), $cell);
—	—	@@ -54,8 +55,8 @@
55	56	}
56	57
57	58	static function tableMessageRowHTML($css_class, $name, $value) {
58		~~- $cell1 = HTML::rawElement('td', array(), $name);~~
59		~~- $cell2 = HTML::rawElement('td', array('class' => 'msg'), $value);~~
	59	+ $cell1 = HTML::element('td', array(), $name);
	60	+ $cell2 = HTML::element('td', array('class' => 'msg'), $value);
60	61	$text = HTML::rawElement('tr', array('class' => "$css_class"), $cell1 . "\n" . $cell2);
61	62	$text .= "\n";
62	63	return $text;

23:38, 11 December 2009 Catrope (talk | contribs) changed the status of r59984 [removed: new added: ok]