CMS MADE SIMPLE FORGE

Showtime Module

 
Back Back to List

[#7845] Module not fully compliant when using JQuery

avatar
Created By: Prue Rowland (psy)
Date Submitted: Wed Apr 18 09:06:24 -0400 2012

Assigned To:
Version: Showtime-3.2
CMSMS Version: 1.10.3
Severity: Minor
Resolution: None
State: Open
Summary:
Module not fully compliant when using JQuery
Detailed Description:
By default, the alt attribute contains anything in the comments field - wysiwyg
or not.

Change line 209 in function.default_JQuery.php

from:
					'" alt="'.$pic['comment'].'" title="' .  $pic['picture_name'].'" />';


to:

'" alt="'.htmlspecialchars(strip_tags($pic['comment'])).'" title="' . 
$pic['picture_name'].'" />';

Would possibly also be a good idea to limit the number of characters.


History

Updates

Updated: 2012-04-18 09:07
description: By default, the alt attribute contains anything in the comments field - wysiwyg or not. Change line 209 in from: '" alt="'.$pic['comment'].'" title="' . $pic['picture_name'].'" />'; to: '" alt="'.htmlspecialchars(strip_tags($pic => By default, the alt attribute contains anything in the comments field - wysiwyg or not. Change line 209 in function.default_JQuery.php from: '" alt="'.$pic['comment'].'" title="' . $pic['picture_name'].'" />'; to: '" alt="'.htmls
resolution_id: => 5