yetangitu/recoll
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Escape html characters in fields before inserting them in result paragraph. Closes issue #99

Browse source
This commit is contained in:
Jean-Francois Dockes 2012-07-27 09:00:45 +02:00
parent e909fc21e8
commit dfecd574a8
1 changed files with 7 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

8
src/query/reslistpager.cpp
View file

@ -254,8 +254,12 @@ void ResListPager::displayDoc(RclConfig *config,
subs["t"] = escapeHtml(doc.meta[Rcl::Doc::keytt]); subs["t"] = escapeHtml(doc.meta[Rcl::Doc::keytt]);
subs["U"] = url; subs["U"] = url;
// Let %(xx) access all metadata. // Let %(xx) access all metadata. HTML-neuter everything:
subs.insert(doc.meta.begin(), doc.meta.end()); for (map<string,string>::iterator it = doc.meta.begin();
it != doc.meta.end(); it++) {
if (!it->first.empty())
subs[it->first] = escapeHtml(it->second);
}
string formatted; string formatted;
pcSubst(parFormat(), formatted, subs); pcSubst(parFormat(), formatted, subs);