self-hosted/oncall
1
0
Fork 0
mirror of https://github.com/linkedin/oncall.git synced 2025-11-29 23:38:17 +02:00
Code Issues Releases Activity

Escape event notes

Browse Source
This commit is contained in:
Daniel Wang
2018-05-14 14:51:33 -07:00
parent 956e228ac8
commit 7683e37f36
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/oncall/ui/static/js/incalendar.js
View File

@@ -1428,7 +1428,7 @@
if (evt.note) {
return $('<li />')
.append('<label class="label-col">Note: </label>')
.append('<span class="data-col">' + (evt.note || "") + '</span>')
.append('<span class="data-col">' + (Handlebars.Utils.escapeExpression(evt.note) || "") + '</span>')
}
})
)
@@ -1490,7 +1490,7 @@
.append('<label class="label-col">Note: </label>')
.append(
$('<div class="input-col" />')
.append('<input type="text" id="inc-event-note" name="inc-event-note" value="' + (evt.note || '') + '" style="width:100%" /> ')
.append('<input type="text" id="inc-event-note" name="inc-event-note" value="' + (Handlebars.Utils.escapeExpression(evt.note) || '') + '" style="width:100%" /> ')
)
)
.append(function(){