diff options
author | nikrou <nikrou@piwigo.org> | 2009-06-24 19:00:40 +0000 |
---|---|---|
committer | nikrou <nikrou@piwigo.org> | 2009-06-24 19:00:40 +0000 |
commit | ed7f7a574eeb9b921d4b85c6e8607faac4971a47 (patch) | |
tree | 2da0b667a74771d3f5859b6c1b4c7b590a7421b2 /template | |
parent | 64c872a83e726ec4d298be479b57dae13fb2c0c6 (diff) |
Fix two problem with Feature 1026 :
use of $conf['user_fields']['username'] and $conf['user_fields']['id'] instead of username and id
escape comment content before editing it.
git-svn-id: http://piwigo.org/svn/trunk@3452 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to '')
-rw-r--r-- | template/yoga/comment_list.tpl | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/template/yoga/comment_list.tpl b/template/yoga/comment_list.tpl index ece0c652b..3a5c1e16f 100644 --- a/template/yoga/comment_list.tpl +++ b/template/yoga/comment_list.tpl @@ -42,7 +42,7 @@ <form method="post" action="{$comment.U_EDIT}" class="filter" id="editComment"> <fieldset> <legend>{'Edit a comment'|@translate}</legend> - <label>{'comment'|@translate}<textarea name="content" id="contenteditid" rows="5" cols="80">{$comment.CONTENT}</textarea></label> + <label>{'comment'|@translate}<textarea name="content" id="contenteditid" rows="5" cols="80">{$comment.CONTENT|escape}</textarea></label> <input type="hidden" name="key" value="{$comment.KEY}"> <input type="hidden" name="image_id" value="{$comment.IMAGE_ID|default:$current.id}"> <input class="submit" type="submit" value="{'Submit'|@translate}"> |