]> source.dussan.org Git - sonarqube.git/commitdiff
SONAR-5758 Apply CSV escaping on classic rule activation params
authorJean-Baptiste Lievremont <jean-baptiste.lievremont@sonarsource.com>
Wed, 22 Oct 2014 09:04:23 +0000 (11:04 +0200)
committerJean-Baptiste Lievremont <jean-baptiste.lievremont@sonarsource.com>
Wed, 22 Oct 2014 09:04:28 +0000 (11:04 +0200)
server/sonar-web/src/main/coffee/coding-rules/views/coding-rules-quality-profile-activation-view.coffee

index 785075e167faea98c105ac71c349d5c4077adced..d6addd2db4e2fa26f5a82fb8f1c3e9a019bfffcb 100644 (file)
@@ -28,7 +28,7 @@ define [
       params = @ui.qualityProfileParameters.map(->
         key: jQuery(@).prop('name'), value: jQuery(@).val() || jQuery(@).prop('placeholder') || '').get()
 
-      paramsHash = (params.map (param) -> param.key + '=' + param.value).join(';')
+      paramsHash = (params.map (param) -> param.key + '=' + window.csvEscape(param.value)).join(';')
 
       if @model
         profileKey = @model.get('qProfile')