diff options
author | Lukas Reschke <lukas@statuscode.ch> | 2012-10-12 17:43:46 +0400 |
---|---|---|
committer | Lukas Reschke <lukas@statuscode.ch> | 2012-10-12 17:43:46 +0400 |
commit | 1772f369503d5f480e2858e8196ae2be9408ad70 (patch) | |
tree | fed4b36369fcdc6bdba4f998ed70c93448d72542 /apps | |
parent | 77eff3479da0997deeaf2f6590e48c9e79e0fa65 (diff) |
Sanitize file names
Diffstat (limited to 'apps')
-rw-r--r-- | apps/files_versions/js/versions.js | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/apps/files_versions/js/versions.js b/apps/files_versions/js/versions.js index 5e46b2a0eed..1a1712c2510 100644 --- a/apps/files_versions/js/versions.js +++ b/apps/files_versions/js/versions.js @@ -36,7 +36,7 @@ function createVersionsDropdown(filename, files) { var historyUrl = OC.linkTo('files_versions', 'history.php') + '?path='+encodeURIComponent( $( '#dir' ).val() ).replace( /%2F/g, '/' )+'/'+encodeURIComponent( filename ); - var html = '<div id="dropdown" class="drop" data-file="'+files+'">'; + var html = '<div id="dropdown" class="drop" data-file="'+escapeHTML(files)+'">'; html += '<div id="private">'; html += '<select data-placeholder="Saved versions" id="found_versions" class="chzen-select" style="width:16em;">'; html += '<option value=""></option>'; |