]> source.dussan.org Git - nextcloud-server.git/commitdiff
projects / nextcloud-server.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: b6c862b)
log messages are looking nicer if they are not escaped. (xss prevention happens on...
authorBjoern Schiessle <schiessle@owncloud.com>
Fri, 22 Jun 2012 14:53:45 +0000 (16:53 +0200)
committerBjoern Schiessle <schiessle@owncloud.com>
Fri, 22 Jun 2012 14:53:45 +0000 (16:53 +0200)
settings/js/log.js patch | blob | history
settings/templates/admin.php patch | blob | history

diff --git a/settings/js/log.js b/settings/js/log.js
index 6063c7d9a9fe8cb41834e832a1f8416b31c6f3ae..fe2e92f7a867f04fd08361d0f794432f4fd55ea0 100644 (file)
--- a/settings/js/log.js
+++ b/settings/js/log.js
@@ -39,7 +39,7 @@ OC.Log={
                        row.append(appTd);
                        
                        var messageTd=$('<td/>');
-                       messageTd.text(entry.message);
+                       messageTd.html(entry.message);
                        row.append(messageTd);
                        
                        var timeTd=$('<td/>');
diff --git a/settings/templates/admin.php b/settings/templates/admin.php
index 9f839cf74916567dc83c1a744ec803f6ae88172e..f8c515369e6b5e8acecadbc252aec354f2310d13 100644 (file)
--- a/settings/templates/admin.php
+++ b/settings/templates/admin.php
@@ -42,7 +42,7 @@ if(!$_['htaccessworking']) {
                                <?php echo $entry->app;?>
                        </td>
                        <td>
-                               <?php echo htmlentities($entry->message);?>
+                               <?php echo $entry->message;?>
                        </td>
                        <td>
                                <?php echo OC_Util::formatDate($entry->time);?>
Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server