summaryrefslogtreecommitdiffstats
path: root/public
diff options
context:
space:
mode:
authorGo MAEDA <maeda@farend.jp>2021-03-19 04:42:43 +0000
committerGo MAEDA <maeda@farend.jp>2021-03-19 04:42:43 +0000
commita18b8397ffb64a34b2db191a9161095bc317450b (patch)
tree4929f685d8b3dc7a95bdb4d844c8b0841e394c9a /public
parentbbfade972865e78e4d865af2cdb93e6cb57d5a45 (diff)
downloadredmine-a18b8397ffb64a34b2db191a9161095bc317450b.tar.gz
redmine-a18b8397ffb64a34b2db191a9161095bc317450b.zip
Sanitize HTML tags in wiki page names (#33820).
git-svn-id: http://svn.redmine.org/redmine/trunk@20829 e93f8b46-1217-0410-a6f0-8f06a7374b81
Diffstat (limited to 'public')
-rw-r--r--public/javascripts/application.js3
1 files changed, 3 insertions, 0 deletions
diff --git a/public/javascripts/application.js b/public/javascripts/application.js
index 0467d97db..431d67ae3 100644
--- a/public/javascripts/application.js
+++ b/public/javascripts/application.js
@@ -1187,6 +1187,9 @@ function inlineAutoComplete(element) {
selectTemplate: function (wikiPage) {
return '[[' + wikiPage.original.value + ']]';
},
+ menuItemTemplate: function (wikiPage) {
+ return sanitizeHTML(wikiPage.original.label);
+ },
noMatchTemplate: function () {
return '<span style:"visibility: hidden;"></span>';
}