gnh1201/seeddms-code
1
0
Fork 0
mirror of https://git.code.sf.net/p/seeddms/code synced 2025-05-22 09:31:22 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

escape owner name and email

Browse Source
This commit is contained in:
Uwe Steinmann 2021-01-30 15:04:12 +01:00
parent f32f39bb6a
commit c5247b8abf
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
views/bootstrap/class.TimelineFeed.php
View File

@ -78,7 +78,7 @@ class SeedDMS_View_TimelineFeed extends SeedDMS_Bootstrap_Style {
$feed->setChannelElement('pubDate', date(\DATE_RSS, strtotime('2013-04-06'))); $feed->setChannelElement('pubDate', date(\DATE_RSS, strtotime('2013-04-06')));
// You can add additional link elements, e.g. to a PubSubHubbub server with custom relations. // You can add additional link elements, e.g. to a PubSubHubbub server with custom relations.
// It's recommended to provide a backlink to the feed URL. // It's recommended to provide a backlink to the feed URL.
$feed->setSelfLink($baseurl.'out/out.Feed.php'); $feed->setSelfLink($baseurl.'out/out.TimelineFeed.php');
// $feed->setAtomLink('http://pubsubhubbub.appspot.com', 'hub'); // $feed->setAtomLink('http://pubsubhubbub.appspot.com', 'hub');
// You can add more XML namespaces for more custom channel elements which are not defined // You can add more XML namespaces for more custom channel elements which are not defined
// in the RSS 2 specification. Here the 'creativeCommons' element is used. There are much more // in the RSS 2 specification. Here the 'creativeCommons' element is used. There are much more
@ -122,7 +122,7 @@ class SeedDMS_View_TimelineFeed extends SeedDMS_Bootstrap_Style {
$newItem->setLink($baseurl.'out/out.ViewDocument.php?documentid='.$doc->getID()); $newItem->setLink($baseurl.'out/out.ViewDocument.php?documentid='.$doc->getID());
$newItem->setDescription("<h2>".$item['msg']."</h2>". $newItem->setDescription("<h2>".$item['msg']."</h2>".
"<p>".getMLText('comment').": <b>".$doc->getComment()."</b></p>". "<p>".getMLText('comment').": <b>".$doc->getComment()."</b></p>".
"<p>".getMLText('owner').": <b><a href=\"mailto:".$owner->getEmail()."\">".$owner->getFullName()."</a></b></p>". "<p>".getMLText('owner').": <b><a href=\"mailto:".htmlspecialchars($owner->getEmail())."\">".htmlspecialchars($owner->getFullName())."</a></b></p>".
"<p>".getMLText("creation_date").": <b>".getLongReadableDate($doc->getDate())."</p>" "<p>".getMLText("creation_date").": <b>".getLongReadableDate($doc->getDate())."</p>"
); );
$newItem->setDate(date('c', $d)); $newItem->setDate(date('c', $d));