mirrors/tt-rss
1
0
Fork 0
mirror of https://git.tt-rss.org/fox/tt-rss.git synced 2025-08-06 06:07:29 +02:00
Code Issues Projects Releases Wiki Activity

Escape error content displayed when subscribing fails (as it might contain HTML).

Browse Source
This commit is contained in:
wn_ 2025-06-17 17:59:10 +00:00
parent ef1f3cbcef
commit 5b0d325733
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
classes/Feeds.php
View File

@ -1035,7 +1035,7 @@ class Feeds extends Handler_Protected {
UrlHelper::$fetch_last_error .= " (feed behind Cloudflare)"; UrlHelper::$fetch_last_error .= " (feed behind Cloudflare)";
} }
return array("code" => 5, "message" => UrlHelper::$fetch_last_error); return array("code" => 5, "message" => truncate_string(UrlHelper::$fetch_last_error, 1000, '…'));
} }
if (str_contains(UrlHelper::$fetch_last_content_type, "html") && self::_is_html($contents)) { if (str_contains(UrlHelper::$fetch_last_content_type, "html") && self::_is_html($contents)) {

2
js/CommonDialogs.js
View File

@ -195,7 +195,7 @@ const CommonDialogs = {
} }
break; break;
case 5: case 5:
dialog.show_error(__("Couldn't download the specified URL: %s").replace("%s", rc['message'])); dialog.show_error(__("Couldn't download the specified URL: %s").replace("%s", App.escapeHtml(rc['message'])));
break; break;
case 6: case 6:
dialog.show_error(__("XML validation failed: %s").replace("%s", rc['message'])); dialog.show_error(__("XML validation failed: %s").replace("%s", rc['message']));