Last modified: 2009-10-01 01:32:00 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T22655, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 20655 - unescaped HTML in delete-page interface
unescaped HTML in delete-page interface
Status: RESOLVED FIXED
Product: MediaWiki
Classification: Unclassified
Parser (Other open bugs)
1.16.x
All All
: Normal normal (vote)
: ---
Assigned To: Trevor Parscal
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2009-09-15 23:43 UTC by Lee Worden
Modified: 2009-10-01 01:32 UTC (History)
3 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Lee Worden 2009-09-15 23:43:31 UTC 
Create a page that includes say, a '<' character very near the beginning.  Then select 'Delete' while using the Vector skin.  The "Other/additional reason" form field will contain a literal '<' character in its value attribute, which is invalid XHTML.  This makes the page unviewable on sites that use the application/xhtml+xml content type to serve MathML content.
Comment 1 Alex Z. 2009-09-16 05:32:17 UTC 
This should be fixed in r56407. Make sure you have $wgHtml5 set to false if you want XHTML. Note that the variable documentation for it indicates that the option may be removed in the future (which would include removal of this fix).
Comment 2 Aryeh Gregor (not reading bugmail, please e-mail directly) 2009-10-01 01:32:00 UTC 
Fix improved in r57182 to work for $wgWellFormedXml = $wgHtml5 = true case (which is the default config).
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links