Project

General

Profile

Actions

Patch #11793

closed

Html escaping doesn't work in "Jump to project" list

Added by Alexey Kalmykov about 12 years ago. Updated about 12 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Projects
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:

Description

Greetings,
I've found a bug in redmine. If project name have some html characters(like '&', or '<', '>', tags, etc.), project name doesn't display correctly, something like on screenshot:
bug screenshot

So, i've made a patch(replaced "h(project)" to "project.to_s").

Redmine version 2.0.3
Ruby version 1.8.7 (x86_64-linux)
RubyGems version 1.8.24
Rack version 1.4
Rails version 3.2.6
Postgresql version 9.1.5


Files

bug.jpg (22.6 KB) bug.jpg bug screenshot Alexey Kalmykov, 2012-09-07 12:15
fix_html_escaping.patch (523 Bytes) fix_html_escaping.patch patch Alexey Kalmykov, 2012-09-07 12:15

Related issues

Is duplicate of Redmine - Defect #11217: Project names in drop-down are escaped twiceClosedJean-Philippe Lang

Actions
Actions #1

Updated by Etienne Massip about 12 years ago

  • Status changed from New to Closed

Closed as duplicate of #11217.

Actions

Also available in: Atom PDF