Ticket #233 (closed defect: duplicate)

Opened 16 months ago

Last modified 16 months ago

Double Quotes in the summary field

Reported by: bob Owned by: dom
Priority: normal Milestone:
Component: openguides Version: svn
Severity: normal Keywords:
Cc:

Description

I dont think were escaping from the database properly.

a summary line of 'one 5 Tube and "rail station on the Bakerloo Line and the Euston-Watford "Line.'

produces the followign html in the form 

<label for="summary">One-line summary of this page:</label>
          
          <div class="edit_box">
            <input size="50" id="summary" name="summary" value="Zone 5 Tube and " rail="" station="" on="" bakerloo="" and="" the="" euston-watford="" line="" type="text">
          </div>
          <span class="hint">

            
              
              A brief description of the thing this page is about.  It'll show
              up in lists of search results.
             
          </span>
          
        </div>
      </fieldset>

that would be bad

Change History

Changed 16 months ago by bob

  • summary changed from Double Quotes in the summray field to Double Quotes in the summary field

Changed 16 months ago by dom

  • owner changed from Nobody to dom
  • status changed from new to assigned

Changed 16 months ago by dom

  • status changed from assigned to closed
  • resolution set to duplicate

This is essentially #79. escapeHTML will replace " with &quot; and so fix this bug.

Note: See TracTickets for help on using tickets.