Updated client-side DOM manipulation functions to unescape char-codes before injecting them via innerText instead of raw-dogging it into innerHTML
This commit is contained in:
parent
e46513cc1a
commit
4ed4b572f2
10 changed files with 25 additions and 26 deletions
|
|
@ -216,7 +216,7 @@ class adminUserBanList{
|
|||
userNode.title = "Nuked"
|
||||
}else{
|
||||
var userNode = document.createElement('p');
|
||||
userNode.innerHTML = user.user;
|
||||
userNode.textContent = utils.unescapeEntities(user.user);
|
||||
}
|
||||
return userNode;
|
||||
}
|
||||
|
|
@ -251,7 +251,7 @@ class adminUserBanList{
|
|||
//Create a node
|
||||
const userNode = document.createElement('p');
|
||||
//Fill it wit the ip
|
||||
userNode.innerHTML = user;
|
||||
userNode.textContent = utils.unescapeEntities(user);
|
||||
//Append it
|
||||
deadUsers.appendChild(userNode);
|
||||
}
|
||||
|
|
@ -269,7 +269,7 @@ class adminUserBanList{
|
|||
//Create a node
|
||||
const ipNode = document.createElement('p');
|
||||
//Fill it wit the ip
|
||||
ipNode.innerHTML = ip;
|
||||
ipNode.textContent = utils.unescapeEntities(ip);
|
||||
//Append it
|
||||
ipList.appendChild(ipNode);
|
||||
}
|
||||
|
|
@ -279,7 +279,7 @@ class adminUserBanList{
|
|||
//Create a node
|
||||
const ipNode = document.createElement('p');
|
||||
//List it as a hashed ip with the hash as alt text
|
||||
ipNode.innerHTML = '[Hashed IP]';
|
||||
ipNode.textContent = utils.unescapeEntities('[Hashed IP]');
|
||||
ipNode.title = hash;
|
||||
//Append the node
|
||||
ipList.appendChild(ipNode);
|
||||
|
|
@ -372,7 +372,7 @@ class adminTokeCommandList{
|
|||
|
||||
//Create toke command label
|
||||
const tokeLabel = document.createElement('p');
|
||||
tokeLabel.innerHTML = `!${toke}`;
|
||||
tokeLabel.textContent = utils.unescapeEntities(`!${toke}`);
|
||||
tokeLabel.classList.add('toke-command-list');
|
||||
|
||||
//Create toke command delete icon
|
||||
|
|
@ -481,7 +481,7 @@ class adminEmoteList{
|
|||
//Set title class
|
||||
emoteTitle.classList.add('emote-list-title');
|
||||
//Set emote title
|
||||
emoteTitle.innerHTML = `[${emote.name}]`;
|
||||
emoteTitle.textContent = utils.unescapeEntities(`[${emote.name}]`);
|
||||
|
||||
//Create delete icon
|
||||
const deleteIcon = document.createElement('i');
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue