Page MenuHomePhabricator

0001-Pass-escaped-HTML-to-the-setchange-log.patch

Authored By
Zabe
Sep 24 2021, 3:00 PM
Size
961 B
Referenced Files
None
Subscribers
None

0001-Pass-escaped-HTML-to-the-setchange-log.patch

From 290ae8e6a10d96c650a997d5cd4c652c0b8cc380 Mon Sep 17 00:00:00 2001
From: Alexander Vorwerk <alexander.vorwerk@stud.uni-goettingen.de>
Date: Fri, 24 Sep 2021 16:52:47 +0200
Subject: [PATCH] Pass escaped HTML to the 'setchange' log
Bug: T291696
Change-Id: I7aeaa6e4de5ccaa5eeb6bf4fb00c96b01d5fea35
---
includes/CentralAuthHooks.php | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/includes/CentralAuthHooks.php b/includes/CentralAuthHooks.php
index d8a88818..c7c5a291 100644
--- a/includes/CentralAuthHooks.php
+++ b/includes/CentralAuthHooks.php
@@ -202,8 +202,8 @@ class CentralAuthHooks implements
break;
case 'setchange':
$args = [
- $params[1] ?: wfMessage( 'rightsnone' )->text(),
- $params[2] ?: wfMessage( 'rightsnone' )->text()
+ $params[1] ?: wfMessage( 'rightsnone' )->escaped(),
+ $params[2] ?: wfMessage( 'rightsnone' )->escaped()
];
break;
default: // 'deleteset'
--
2.17.1

File Metadata

Mime Type
text/x-diff
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
9187742
Default Alt Text
0001-Pass-escaped-HTML-to-the-setchange-log.patch (961 B)

Event Timeline