v7_htmlspecialchars_logo.diff

Oliver Hader, 2018-04-04 08:26

Download (3.06 KB)

View differences:

typo3/sysext/backend/Classes/Backend/ToolbarItems/ClearCacheToolbarItem.php
157 157
            $title = $cacheAction['description'] ?: $cacheAction['title'];
158 158
            $result[] = '<li>';
159 159
            $result[] = '<a class="dropdown-list-link" href="' . htmlspecialchars($cacheAction['href']) . '" title="' . htmlspecialchars($title) . '">';
160
            $result[] = $cacheAction['icon'] . ' ' . htmlspecialchars($cacheAction['title']);
160
            $result[] = htmlspecialchars($cacheAction['icon']) . ' ' . htmlspecialchars($cacheAction['title']);
161 161
            $result[] = '</a>';
162 162
            $result[] = '</li>';
163 163
        }
typo3/sysext/backend/Classes/Backend/ToolbarItems/HelpToolbarItem.php
83 83
        $dropdown[] = '<ul class="dropdown-list">';
84 84
        foreach ($this->helpModuleMenu->getChildren() as $module) {
85 85
            /** @var BackendModule $module */
86
            $moduleIcon = $module->getIcon();
86
            $moduleIcon = htmlspecialchars($module->getIcon());
87 87
            $dropdown[] ='<li'
88 88
                . ' id="' . htmlspecialchars($module->getName()) . '"'
89 89
                . ' class="typo3-module-menu-item submodule mod-' . htmlspecialchars($module->getName()) . '" '
typo3/sysext/backend/Classes/Backend/ToolbarItems/ShortcutToolbarItem.php
154 154
            $shortcutMenu[] = '
155 155
				<li class="shortcut" data-shortcutid="' . (int)$shortcut['raw']['uid'] . '">
156 156
					<a class="dropdown-list-link dropdown-link-list-add-editdelete" href="#" onclick="' . htmlspecialchars($shortcut['action']) . ' return false;">' .
157
                        $shortcut['icon'] . ' ' .
157
                        htmlspecialchars($shortcut['icon']) . ' ' .
158 158
                        htmlspecialchars($shortcut['label']) .
159 159
                    '</a>
160 160
					' . $editIcon . $deleteIcon . '