1
0
mirror of https://github.com/janeczku/calibre-web synced 2024-12-25 09:30:31 +00:00

Removed xss on shelf add/remove action

This commit is contained in:
Ozzie Isaacs 2021-08-30 17:05:53 +02:00
parent 86ef1d47e8
commit c0a06eec46

View File

@ -69,7 +69,7 @@ $("#archived_cb").on("change", function() {
templates.remove({ templates.remove({
add: this.href, add: this.href,
remove: $this.data("remove-href"), remove: $this.data("remove-href"),
content: this.textContent content: $("<div>").text(this.textContent).html()
}) })
); );
break; break;
@ -78,7 +78,7 @@ $("#archived_cb").on("change", function() {
templates.add({ templates.add({
add: $this.data("add-href"), add: $this.data("add-href"),
remove: this.href, remove: this.href,
content: this.textContent content: $("<div>").text(this.textContent).html(),
}) })
); );
break; break;