Commit 7cb75c8a authored by bugreport%peshkin.net's avatar bugreport%peshkin.net

Bug 314198: Fix leaking list of product names in query.cgi

Patch by Joel Peshkin <bugreport@peshkin.net> r=lpsolit, a=justdave
parent 9a161bbf
......@@ -74,10 +74,12 @@ for "crash secure SSL flash".
[% FOREACH c = classification %]
<optgroup label="[% c.name FILTER html %]">
[% FOREACH p = c.products %]
<option value="[% p.name FILTER html %]"
[% " selected" IF lsearch(default.product, p.name) != -1 %]>
[% p.name FILTER html %]
</option>
[% IF user.can_see_product(p.name) %]
<option value="[% p.name FILTER html %]"
[% " selected" IF lsearch(default.product, p.name) != -1 %]>
[% p.name FILTER html %]
</option>
[% END %]
[% END %]
</optgroup>
[% END %]
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment