mirrors/TiddlyWiki5
1
0
Fork 0
mirror of https://github.com/Jermolene/TiddlyWiki5 synced 2024-11-17 23:34:50 +00:00
Code Issues Releases Wiki Activity

Whoops, should be HTML encoding tiddler div fields

Browse Source
This commit is contained in:
Jeremy Ruston 2012-07-16 12:57:19 +01:00
parent 4a783d08c6
commit a689abf0c1
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
core/modules/serializers.js
View File

@ -113,7 +113,7 @@ exports["application/x-tiddler-html-div"] = function(tiddler) {
pullField("title"); pullField("title");
// Output the fields // Output the fields
for(f=0; f<fields.length; f++) { for(f=0; f<fields.length; f++) {
result.push(" " + fields[f] + "=\"" + tiddler.getFieldString(fields[f]) + "\""); result.push(" " + fields[f] + "=\"" + $tw.utils.htmlEncode(tiddler.getFieldString(fields[f])) + "\"");
} }
result.push(">\n<pre>"); result.push(">\n<pre>");
result.push($tw.utils.htmlEncode(tiddler.fields.text)); result.push($tw.utils.htmlEncode(tiddler.fields.text));