[LON-CAPA-cvs] cvs: rat / lonpage.pm
www
lon-capa-cvs@mail.lon-capa.org
Thu, 28 Mar 2002 21:47:49 -0000
www Thu Mar 28 16:47:49 2002 EDT
Modified files:
/rat lonpage.pm
Log:
Escape the rest of the GET parameters
Index: rat/lonpage.pm
diff -u rat/lonpage.pm:1.35 rat/lonpage.pm:1.36
--- rat/lonpage.pm:1.35 Tue Mar 26 18:12:57 2002
+++ rat/lonpage.pm Thu Mar 28 16:47:48 2002
@@ -1,7 +1,7 @@
# The LearningOnline Network with CAPA
# Page Handler
#
-# $Id: lonpage.pm,v 1.35 2002/03/26 23:12:57 www Exp $
+# $Id: lonpage.pm,v 1.36 2002/03/28 21:47:48 www Exp $
#
# Copyright Michigan State University Board of Trustees
#
@@ -389,15 +389,16 @@
'___'.$resid.'___'.
&Apache::lonnet::declutter($hash{'src_'.$rid});
$metainfo.=
- '<a href="/adm/grades?symb='.$symb.
+ '<a href="/adm/grades?symb='.&Apache::lonnet::escape($symb).
'&command=submission" target="LONcatInfo">'.
'<img src="/adm/lonMisc/subm_button.gif" border=0>'.
'</img></a>'.
- '<a href="/adm/grades?symb='.$symb.
+ '<a href="/adm/grades?symb='.&Apache::lonnet::escape($symb).
'&command=viewgrades" target="LONcatInfo">'.
'<img src="/adm/lonMisc/pgrd_button.gif" border=0>'.
'</img></a>'.
- '<a href="/adm/parmset?symb='.$symb.'" target="LONcatInfo">'.
+ '<a href="/adm/parmset?symb='.&Apache::lonnet::escape($symb).
+ '" target="LONcatInfo">'.
'<img src="/adm/lonMisc/pprm_button.gif" border=0>'.
'</img></a>';
}