Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
I
intranet-riskmanagement
Project
Project
Details
Activity
Releases
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
project-open
intranet-riskmanagement
Commits
28394302
Commit
28394302
authored
Jun 11, 2020
by
Frank Bergmann
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
- Improving security by added -limit_to xxx to all im_opt_val calls
parent
a6585322
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
3 additions
and
3 deletions
+3
-3
new.tcl
www/new.tcl
+3
-3
No files found.
www/new.tcl
View file @
28394302
...
...
@@ -216,7 +216,7 @@ if {"delete" == $button_pressed} {
# Fetch variable values from the HTTP session and write to local variables
set
url_vars_set
[
ns_conn form
]
foreach
var_from_url
$vars
_from_url
{
ad_set_element_value -element
$var
_from_url
[
im_opt_val
$var
_from_url
]
ad_set_element_value -element
$var
_from_url
[
im_opt_val
-limit_to nohtml
$var
_from_url
]
}
set
risk_elements
[
list
]
...
...
@@ -241,9 +241,9 @@ ad_form -extend -name riskmanagement_risk -form $risk_elements
# Add DynFields to the form
set
field_cnt
[
im_dynfield::append_attributes_to_form
\
-object_id
[
im_opt_val risk_id
]
\
-object_id
[
im_opt_val
-limit_to integer
risk_id
]
\
-form_display_mode
$form
_mode
\
-object_subtype_id
[
im_opt_val risk_type_id
]
\
-object_subtype_id
[
im_opt_val
-limit_to integer
risk_type_id
]
\
-object_type
"im_risk"
\
-form_id
"riskmanagement_risk"
\
]
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment