]> wagnertech.de Git - kivitendo-erp.git/commitdiff
projects / kivitendo-erp.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: b672361)
hidden var korrekt escapen.
authorSven Schöling <s.schoeling@linet-services.de>
Mon, 17 Oct 2011 09:31:38 +0000 (11:31 +0200)
committerSven Schöling <s.schoeling@linet-services.de>
Mon, 17 Oct 2011 09:31:38 +0000 (11:31 +0200)
templates/webpages/oe/form_footer.html patch | blob | history

diff --git a/templates/webpages/oe/form_footer.html b/templates/webpages/oe/form_footer.html
index ef6bc85abed365a55b5cd532fd3d22e54b799956..e22ee111aec0a371dceac6e0a07fb6c6b1053d6c 100644 (file)
--- a/templates/webpages/oe/form_footer.html
+++ b/templates/webpages/oe/form_footer.html
@@ -176,7 +176,7 @@
 <input type="hidden" name="action" value="dispatcher">
 <input type="hidden" name="saved_xyznumber" value="[% HTML.escape(saved_xyznumber) %]">
 <input type="hidden" name="rowcount" value="[% HTML.escape(rowcount) %]">
-<input type="hidden" name="callback" value="[% callback %]">
+<input type="hidden" name="callback" value="[% callback | html %]">
 [% IF vc == 'customer' %]
   <input type="hidden" name="customer_discount" value="[% HTML.escape(customer_discount) %]">
 [% ELSE %]
Unnamed repository; edit this file 'description' to name the repository.