Code: Select all
plugins/filebrowser/tpl/cmsbrowser.html | 6 +++---
plugins/filebrowser/tpl/editorbrowser.html | 4 ++--
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/plugins/filebrowser/tpl/cmsbrowser.html b/plugins/filebrowser/tpl/cmsbrowser.html
index 76a6e39..60583d1 100644
--- a/plugins/filebrowser/tpl/cmsbrowser.html
+++ b/plugins/filebrowser/tpl/cmsbrowser.html
@@ -19,7 +19,7 @@ global $tx, $sn;
<div style="clear: both;"></div>
<div id="filebrowser_subfolders">
- <div style="clear: both; margin: 0px 0;"><b><?php echo $tx['filetype']['folder']; ?>:</b> <?php echo $this->currentDirectory; ?></div>
+ <div style="clear: both; margin: 0px 0;"><b><?php echo $tx['filetype']['folder']; ?>:</b> <?php echo XH_hsc($this->currentDirectory); ?></div>
<div style="text-align: right;">
<button type="button" onclick="FILEBROWSER.togglexhfbForm('xhfbCreateDir');"><?php echo $this->translate('create_folder'); ?></button>
@@ -28,7 +28,7 @@ global $tx, $sn;
<fieldset id="xhfbCreateDir" class="xhfbform">
- <legend><?php echo $this->translate('create_subfolder_in', $this->currentDirectory); ?></legend>
+ <legend><?php echo $this->translate('create_subfolder_in', XH_hsc($this->currentDirectory)); ?></legend>
<div style="padding: 3em;">
<form method="POST" action="<?php echo $sn, '?', XH_hsc($_SERVER['QUERY_STRING']);?>">
@@ -49,7 +49,7 @@ global $tx, $sn;
<button type="button" onclick="FILEBROWSER.togglexhfbForm('xhfbUploadFile');"><?php echo $this->translate('upload_file'); ?></button>
</div>
<fieldset id="xhfbUploadFile" class="xhfbform">
- <legend><?php echo $this->translate('upload_file_to', $this->currentDirectory); ?></legend>
+ <legend><?php echo $this->translate('upload_file_to', XH_hsc($this->currentDirectory)); ?></legend>
<div style="padding: 3em;">
<form method="POST" action="<?php echo $sn, '?', XH_hsc($_SERVER['QUERY_STRING']);?>" enctype="multipart/form-data" onsubmit="return FILEBROWSER.checkUpload(this, '<?php echo $this->escapeForEventHandlerAttribute($this->translate('confirm_upload'));?>')">
diff --git a/plugins/filebrowser/tpl/editorbrowser.html b/plugins/filebrowser/tpl/editorbrowser.html
index f4de0a2..a90730f 100644
--- a/plugins/filebrowser/tpl/editorbrowser.html
+++ b/plugins/filebrowser/tpl/editorbrowser.html
@@ -25,7 +25,7 @@
<button type="button" onclick="FILEBROWSER.togglexhfbForm('xhfbCreateDir');"><?php echo $this->translate('create_folder'); ?></button>
<button type="button" onclick="FILEBROWSER.togglexhfbForm('xhfbUploadFile');"><?php echo $this->translate('upload_file'); ?></button>
<fieldset id="xhfbUploadFile" class="xhfbform">
- <legend><?php echo $this->translate('upload_file_to', $this->currentDirectory); ?></legend>
+ <legend><?php echo $this->translate('upload_file_to', XH_hsc($this->currentDirectory)); ?></legend>
<div style="padding: 3em;">
<form method="post" action="" enctype="multipart/form-data" onsubmit="return FILEBROWSER.checkUpload(this, '<?php echo $this->escapeForEventHandlerAttribute($this->translate('confirm_upload'));?>')">
@@ -37,7 +37,7 @@
</div>
</fieldset>
<fieldset id="xhfbCreateDir" class="xhfbform">
- <legend><?php echo $this->translate('create_subfolder_in', $this->currentDirectory); ?></legend>
+ <legend><?php echo $this->translate('create_subfolder_in', XH_hsc($this->currentDirectory)); ?></legend>
<div style="padding: 3em;">
<form method="post" action="">