Chris/webperl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Force encoding of entities in option name/value/title

Browse Source
This commit is contained in:
Chris 2020-05-27 18:58:48 +01:00
parent 40b571c117
commit fdf05ec8e8
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/Webperl/Template.pm
View File

@ -743,10 +743,10 @@ sub build_optionlist {
foreach my $option (@{$options}) { foreach my $option (@{$options}) {
my $sel = $selected{$option -> {"value"}} ? ' selected="selected"' : ''; my $sel = $selected{$option -> {"value"}} ? ' selected="selected"' : '';
$optstr .= $self -> process_template($opttem, {"***name***" => $option -> {"name"}, $optstr .= $self -> process_template($opttem, {"***name***" => encode_entities($option -> {"name"}),
"***value***" => $option -> {"value"}, "***value***" => encode_entities($option -> {"value"}),
"***sel***" => $sel, "***sel***" => $sel,
"***title***" => defined($option -> {"title"}) ? ' title="'.$option -> {"title"}.'"' : ''}); "***title***" => defined($option -> {"title"}) ? ' title="'.encode_entities($option -> {"title"}).'"' : ''});
} }
# Handle select options, if any. # Handle select options, if any.