HTML escape at app/views/wiki/history.rhtml.

author Toshi MARUYAMA <marutosijp2@yahoo.co.jp>

Tue, 2 Aug 2011 13:19:45 +0000 (13:19 +0000)

committer Toshi MARUYAMA <marutosijp2@yahoo.co.jp>

Tue, 2 Aug 2011 13:19:45 +0000 (13:19 +0000)
author Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
Tue, 2 Aug 2011 13:19:45 +0000 (13:19 +0000)
committer Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
Tue, 2 Aug 2011 13:19:45 +0000 (13:19 +0000)
diff --git a/app/views/wiki/history.rhtml b/app/views/wiki/history.rhtml

index 73d30569a699614ae3b00a844727c83432a4e84f..4481e8634ba31c3b87ea8d6b4b88cb364c2160c4 100644 (file)
--- a/app/views/wiki/history.rhtml
+++ b/app/views/wiki/history.rhtml
@@ -20,7 +20,7 @@
  <% line_num = 1 %>
  <% @versions.each do |ver| %>
  <tr class="wiki-page-version <%= cycle("odd", "even") %>">
-    <td class="id"><%= link_to ver.version, :action => 'show', :id => @page.title, :project_id => @page.project, :version => ver.version %></td>
+    <td class="id"><%= link_to h(ver.version), :action => 'show', :id => @page.title, :project_id => @page.project, :version => ver.version %></td>
      <td class="checkbox"><%= radio_button_tag('version', ver.version, (line_num==1), :id => "cb-#{line_num}", :onclick => "$('cbto-#{line_num+1}').checked=true;") if show_diff && (line_num < @versions.size) %></td>
      <td class="checkbox"><%= radio_button_tag('version_from', ver.version, (line_num==2), :id => "cbto-#{line_num}") if show_diff && (line_num > 1) %></td>
      <td class="updated_on"><%= format_time(ver.updated_on) %></td>
author	Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
	Tue, 2 Aug 2011 13:19:45 +0000 (13:19 +0000)
committer	Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
	Tue, 2 Aug 2011 13:19:45 +0000 (13:19 +0000)