Skip to content

erp5
erp5
Commit 9e61edf0 authored by Julien Muchembled's avatar Julien Muchembled
Browse files
Options

safe_html: reescape entities, otherwise scrubHTML produces invalid HTML 

git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@41727 20353a03-c40f-0410-a6d1-a30d3c3de9de
parent b255c894
Hide whitespace changes
Inline Side-by-side
Showing with 1 addition and 1 deletion
product/PortalTransforms/transforms/safe_html.py
View file @ 9e61edf0
......@@ -219,7 +219,7 @@ class StrippingParser(HTMLParser):
self.original_charset = match.group('charset')
v = charset_parser.sub(
CharsetReplacer(self.default_encoding), v)
self.result.append(' %s="%s"' % (k, v))
self.result.append(' %s="%s"' % (k, escape(v, True)))
#UNUSED endTag = '</%s>' % tag
if safeToInt(self.valid.get(tag)):
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7