Documentation Source Text

Check-in [c57271bdec]
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview
Comment:Fix a XSS problem in the search box.
Downloads: Tarball | ZIP archive
Timelines: family | ancestors | descendants | both | branch-3.22
Files: files | file ages | folders
SHA3-256: c57271bdec60fd995c971ec4460c3a7462aa094da3f41e694bb1d98d50e14e3e
User & Date: drh 2018-03-09 17:26:06.016
Context
2018-03-09
17:59
Improvements to Wapp to clean up the previous XSS fix. (check-in: 4652ea52c0 user: drh tags: branch-3.22)
17:26
Fix a XSS problem in the search box. (check-in: c57271bdec user: drh tags: branch-3.22)
2018-03-05
12:21
Fix a typo in the about.html page. While we were at it, remove some older and largely obsolete text from that page. (check-in: 5f83963454 user: drh tags: branch-3.22)
Changes
Unified Diff Ignore Whitespace Patch
Changes to search/search.tcl.in.
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
    <p>Page generated by <a href='fts5.html'>FTS5</a> in about %html($t).
    </center>
    <script>
      window.addEventListener('load', function() {
        var w = document.getElementById("searchmenu");
        w.style.display = "block";
        w = document.getElementById("searchtype");
        w.value = "%string($searchType)"
        setTimeout(function(){
          var s = document.getElementById("searchbox");
          s.value = "%string([wapp-param q])"
          s.focus();
          s.select();
        }, 30);
      });
    </script>
  }
}







|


|







291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
    <p>Page generated by <a href='fts5.html'>FTS5</a> in about %html($t).
    </center>
    <script>
      window.addEventListener('load', function() {
        var w = document.getElementById("searchmenu");
        w.style.display = "block";
        w = document.getElementById("searchtype");
        w.value = "%string([wappInt-enc-html $searchType])"
        setTimeout(function(){
          var s = document.getElementById("searchbox");
          s.value = "%string([wappInt-enc-html [wapp-param q]])"
          s.focus();
          s.select();
        }, 30);
      });
    </script>
  }
}