diff options
| author | Ivan Kohler <ivan@freeside.biz> | 2012-11-11 22:18:50 -0800 |
|---|---|---|
| committer | Ivan Kohler <ivan@freeside.biz> | 2012-11-11 22:18:50 -0800 |
| commit | f06a0610477b0ba8e1931722c3105b880fbc35c3 (patch) | |
| tree | ab3229ca693a4d9c0d7b3405024f00d5ac3f4b5b /httemplate/elements/location.html | |
| parent | c9015995b5ae64e0eaaa89ff75eb43c88186642c (diff) | |
fix XSS
Diffstat (limited to 'httemplate/elements/location.html')
| -rw-r--r-- | httemplate/elements/location.html | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/httemplate/elements/location.html b/httemplate/elements/location.html index de844e465..0f844531d 100644 --- a/httemplate/elements/location.html +++ b/httemplate/elements/location.html @@ -214,7 +214,7 @@ Example: <TD COLSPAN=8> <INPUT TYPE="text" SIZE=15 NAME="enter_censustract" - VALUE="<% $object->censustract %>"> + VALUE="<% $object->censustract |h %>"> <% '(automatic)' %> </TD> </TR> @@ -226,7 +226,7 @@ Example: <TD COLSPAN=8> <INPUT TYPE="text" SIZE=15 NAME="<%$pre%>district" - VALUE="<% $object->district %>"> + VALUE="<% $object->district |h %>"> <% '(automatic)' %> </TD> </TR> |