Correctly escape the footer description from theming
Signed-off-by: Joas Schilling <coding@schilljs.com>
This commit is contained in:
parent
57c1be8633
commit
e8750f618b
|
@ -120,7 +120,7 @@ $maxUploadFilesize = min($upload_max_filesize, $post_max_size);
|
||||||
<input type="hidden" name="dir" id="dir" value="" />
|
<input type="hidden" name="dir" id="dir" value="" />
|
||||||
<div class="hiddenuploadfield">
|
<div class="hiddenuploadfield">
|
||||||
<input type="file" id="file_upload_start" class="hiddenuploadfield" name="files[]"
|
<input type="file" id="file_upload_start" class="hiddenuploadfield" name="files[]"
|
||||||
data-url="<?php print_unescaped(OCP\Util::linkTo('files', 'ajax/upload.php')); ?>" />
|
data-url="<?php p(OCP\Util::linkTo('files', 'ajax/upload.php')); ?>" />
|
||||||
</div>
|
</div>
|
||||||
<?php endif; ?>
|
<?php endif; ?>
|
||||||
<footer>
|
<footer>
|
||||||
|
|
|
@ -81,7 +81,7 @@ class ThemingDefaults extends \OC_Defaults {
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getName() {
|
public function getName() {
|
||||||
return $this->config->getAppValue('theming', 'name', $this->name);
|
return strip_tags($this->config->getAppValue('theming', 'name', $this->name));
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getHTMLName() {
|
public function getHTMLName() {
|
||||||
|
@ -89,11 +89,11 @@ class ThemingDefaults extends \OC_Defaults {
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getTitle() {
|
public function getTitle() {
|
||||||
return $this->config->getAppValue('theming', 'name', $this->name);
|
return $this->getName();
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getEntity() {
|
public function getEntity() {
|
||||||
return $this->config->getAppValue('theming', 'name', $this->name);
|
return $this->getName();
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getBaseUrl() {
|
public function getBaseUrl() {
|
||||||
|
@ -101,7 +101,7 @@ class ThemingDefaults extends \OC_Defaults {
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getSlogan() {
|
public function getSlogan() {
|
||||||
return $this->config->getAppValue('theming', 'slogan', $this->slogan);
|
return \OC_Util::sanitizeHTML($this->config->getAppValue('theming', 'slogan', $this->slogan));
|
||||||
}
|
}
|
||||||
|
|
||||||
public function getShortFooter() {
|
public function getShortFooter() {
|
||||||
|
|
Loading…
Reference in New Issue