moodle/moodle
3
0
Fork 0
mirror of https://github.com/moodle/moodle.git synced 2025-08-05 00:46:50 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

manual grading: MDL-20581 Fix potential XSS problem.

Browse source 
Thanks to Penny for spotting this.
Merged from MOODLE_19_STABLE.
This commit is contained in:
Tim Hunt 2009-11-19 17:31:41 +00:00
parent 2d0d78befd
commit 5ffd1421a5
3 changed files with 7 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

5
question/type/questiontype.php
View file

@ -946,7 +946,10 @@ class default_questiontype {
$grade .= question_format_grade($cmoptions, $question->maxgrade);
}
$comment = $state->manualcomment;
$formatoptions = new stdClass;
$formatoptions->para = false;
$comment = format_text($state->manualcomment, FORMAT_HTML,
$formatoptions, $cmoptions->course);
$commentlink = '';
if (!empty($options->questioncommentlink)) {