From: Toshi MARUYAMA Date: Tue, 2 Aug 2011 13:02:23 +0000 (+0000) Subject: HTML escape at app/views/gantts/show.html.erb. X-Git-Tag: 1.3.0~1575 X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=1a02a73f8f15f7f32d93a9e3bcda312802d18777;p=redmine.git HTML escape at app/views/gantts/show.html.erb. git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@6368 e93f8b46-1217-0410-a6f0-8f06a7374b81 --- diff --git a/app/views/gantts/show.html.erb b/app/views/gantts/show.html.erb index ddff80d86..1acd83487 100644 --- a/app/views/gantts/show.html.erb +++ b/app/views/gantts/show.html.erb @@ -92,7 +92,7 @@ height = (show_weeks ? header_heigth : header_heigth + g_height) width = ((month_f >> 1) - month_f) * zoom - 1 %>
- <%= link_to "#{month_f.year}-#{month_f.month}", @gantt.params.merge(:year => month_f.year, :month => month_f.month), :title => "#{month_name(month_f.month)} #{month_f.year}"%> + <%= link_to h("#{month_f.year}-#{month_f.month}"), @gantt.params.merge(:year => month_f.year, :month => month_f.month), :title => "#{month_name(month_f.month)} #{month_f.year}"%>
<% left = left + width + 1