nupplaPhil/friendica
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Replace JQuery .text by .html

Browse source 
- Prevents inserting unescaped HTML in page
This commit is contained in:
Hypolite Petovan 2020-11-16 18:16:20 -05:00
commit b2c4116357
12 changed files with 20 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

2
view/theme/smoothly/templates/jot-header.tpl
View file

@ -86,7 +86,7 @@ function enableOnUser(){
$('#contact_allow, #contact_deny, #group_allow, #group_deny').change(function() {
var selstr;
$('#contact_allow option:selected, #contact_deny option:selected, #group_allow option:selected, #group_deny option:selected').each( function() {
selstr = $(this).text();
selstr = $(this).html();
$('#jot-perms-icon').removeClass('unlock').addClass('lock');
$('#jot-public').hide();
$('.profile-jot-net input').attr('disabled', 'disabled');