PNBR#31556 Quotes in settitle beter escapen. Was niet allemaal te misbruiken maar nu is het consequent

svn path=/Website/branches/v5.4.4/; revision=23944
2015-01-26 08:24:35 +00:00
parent 6ad9b632d1
commit a3cc646bb0
12 changed files with 13 additions and 13 deletions
--- a/APPL/BES/bes_opdr.asp
+++ b/APPL/BES/bes_opdr.asp
@@ -56,7 +56,7 @@ oRs.Close();
 <%  FCLTHeader.Generate(); %>
    <script>
      $(document).ready(function () {
-          FcltMgr.setTitle("<%=L("lcl_bes_BesOrder") + " " + ordernr_id%>", {hot: false});
+          FcltMgr.setTitle("<%=L("lcl_bes_BesOrder") + " " + safe.jsstring(ordernr_id)%>", {hot: false});
      });
    </script>
  </head>
--- a/APPL/FAC/fac_adres.asp
+++ b/APPL/FAC/fac_adres.asp
@@ -46,7 +46,7 @@ FCLTHeader.Requires({plugins:["suggest","jQuery"], js: ["jquery-ui.js"]})
 %>
  <script  type="text/javascript" >
      <% if (adr_key > 0) { %>
-        FcltMgr.setTitle("<%=L("lcl_adress") + ' ' + fac_title%>", {hot:false});
+        FcltMgr.setTitle("<%=L("lcl_adress") + ' ' + safe.jsstring(fac_title)%>", {hot:false});
      <% } %>

      function facClose(params)
--- a/APPL/FAC/fac_faq.asp
+++ b/APPL/FAC/fac_faq.asp
@@ -30,7 +30,7 @@ FCLTHeader.Requires({plugins:["jQuery", "suggest"], js: ["jquery-ui.js"]})
 %>
  <script type="text/javascript" >
      <% if (faq_key > 0) { %>
-        FcltMgr.setTitle("<%=fac_title%>", {hot:false});
+        FcltMgr.setTitle("<%=safe.jsstring(fac_title)%>", {hot:false});
      <% } %>

      function facClose(params)
--- a/APPL/FAC/fac_widget.asp
+++ b/APPL/FAC/fac_widget.asp
@@ -30,7 +30,7 @@ FCLTHeader.Requires({plugins:["jQuery"], js: ["jquery-ui.js"]})
 %>
  <script type="text/javascript" >
      <% if (widget_key > 0) { %>
-        FcltMgr.setTitle("<%=fac_title%>", {hot:false});
+        FcltMgr.setTitle("<%=safe.jsstring(fac_title)%>", {hot:false});
      <% } %>

      function facClose(params)
--- a/APPL/MLD/mld_edit_uitvoeren.asp
+++ b/APPL/MLD/mld_edit_uitvoeren.asp
@@ -83,7 +83,7 @@ var opdrnr = oRs("opdrnr").value;
  <head>
 <%  FCLTHeader.Generate(); %>
    <script type="text/javascript">
-      FcltMgr.setTitle(L("lcl_mld_uitvoeren") + " " + "<%=opdrnr%>", {hot: false});
+      FcltMgr.setTitle(L("lcl_mld_uitvoeren") + " " + "<%=safe.jsstring(opdrnr)%>", {hot: false});
      var submitted = false;
      function submitCallback(json, textStatus)
      {
--- a/APPL/PRS/kpn_kpngroep.asp
+++ b/APPL/PRS/kpn_kpngroep.asp
@@ -38,7 +38,7 @@ FCLTHeader.Requires({plugins:["suggest","jQuery"],
   FCLTHeader.Generate();
 %>
  <script  type="text/javascript" >
-      FcltMgr.setTitle("<%=L("lcl_prs_kostenpl_group") + ' ' + kpngroep_title%>", {hot:false});
+      FcltMgr.setTitle("<%=L("lcl_prs_kostenpl_group") + ' ' + safe.jsstring(kpngroep_title)%>", {hot:false});
 <%    if (kpngroep_key == -1) { %>FcltMgr.startEdit(window);<% } %>
      function kpnClose(params)
      {
--- a/APPL/PRS/kpn_mandate.asp
+++ b/APPL/PRS/kpn_mandate.asp
@@ -63,7 +63,7 @@ if (!multi && kpnman_keys[0] > -1)
      }
      $(document).ready(function()
                        {
-                          FcltMgr.setTitle(L("lcl_prs_kosten_mandate") + ' ' + "<%kpnman_title%>", {hot: false});
+                          FcltMgr.setTitle(L("lcl_prs_kosten_mandate")%>", {hot: false});
                        });

    </script>
--- a/APPL/PRS/kpn_show_kpn.asp
+++ b/APPL/PRS/kpn_show_kpn.asp
@@ -84,7 +84,7 @@ user.auth_required_or_abort(canShow);
  <head>
 <%  FCLTHeader.Generate(); %>
    <script  type="text/javascript" >
-      FcltMgr.setTitle("<%=L("lcl_prs_kosten") + ' ' + kpn_nr%>", {hot:false});
+      FcltMgr.setTitle("<%=L("lcl_prs_kosten") + ' ' + safe.jsstring(kpn_nr)%>", {hot:false});
      function kpn_change()
      {
          if (FcltMgr.startEdit(window))
--- a/APPL/PRS/prs_bedrijf.asp
+++ b/APPL/PRS/prs_bedrijf.asp
@@ -56,7 +56,7 @@ var dienstauthparams = user.checkAutorisation("WEB_PRSMSU", true);
  <head>
 <%  FCLTHeader.Generate(); %>
    <script  type="text/javascript" >
-      FcltMgr.setTitle("<%=bnaam%>");
+      FcltMgr.setTitle("<%=safe.jsstring(bnaam)%>");
 <%    if (bedrijf_key == -1) { %>FcltMgr.startEdit(window);<% } %>

      function bedrijfClose(params)
@@ -73,7 +73,7 @@ var dienstauthparams = user.checkAutorisation("WEB_PRSMSU", true);
            FcltMgr.closeDetail(window, params );
            return true;
          }
-          FcltMgr.setTitle("<%=bnaam%>", {hot: false});
+          FcltMgr.setTitle("<%=safe.jsstring(bnaam)%>", {hot: false});

          // Altijd complete reload, we hebben nu een bedrijf_key namelijk
          if (!params.keepForm)
--- a/APPL/PRS/prs_contactpersoon.asp
+++ b/APPL/PRS/prs_contactpersoon.asp
@@ -45,7 +45,7 @@
   FCLTHeader.Generate();
 %>
  <script  type="text/javascript" >
-      FcltMgr.setTitle("<%= cpnaam%>");
+      FcltMgr.setTitle("<%=safe.jsstring(cpnaam)%>");
 <%    if (cps_key == -1) { %>FcltMgr.startEdit(window);<% } %>

      function cpsClose(params)
--- a/APPL/PRS/prs_dienst.asp
+++ b/APPL/PRS/prs_dienst.asp
@@ -44,7 +44,7 @@ FCLTHeader.Requires({plugins:["suggest","jQuery"], js: ["jQuery-ui.js"]})
   FCLTHeader.Generate();
 %>
  <script  type="text/javascript" >
-      FcltMgr.setTitle("<%=L("lcl_prs_companies_dienst") + ' ' + dloc_title%>", {hot:false});
+      FcltMgr.setTitle("<%=L("lcl_prs_companies_dienst") + ' ' + safe.jsstring(dloc_title)%>", {hot:false});
 <%    if (dloc_key == -1 && dienst_key == -1) { %>FcltMgr.startEdit(window);<% } %>
      function prsClose(params)
      {
--- a/APPL/PRS/prs_perslid.asp
+++ b/APPL/PRS/prs_perslid.asp
@@ -43,7 +43,7 @@
   FCLTHeader.Generate();
 %>
  <script  type="text/javascript" >
-      FcltMgr.setTitle("<%=naam%>", {hot: false});
+      FcltMgr.setTitle("<%=safe.jsstring(naam)%>", {hot: false});
 <%    if (prs_key == -1) { %>FcltMgr.startEdit(window);<% } %>
      function prsClose(params)
      {