135/netdisco
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Enforce escaping on all template content

Browse Source
This commit is contained in:
Oliver Gorwits
2019-09-23 14:22:00 +01:00
parent 5f378a39ea
commit deb9b62c7f
77 changed files with 392 additions and 387 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
share/views/sidebar/device/netmap.tt
View File

@@ -82,7 +82,7 @@
rel="tooltip" data-placement="left" data-offset="5" data-title="Host Groups">
[% FOREACH opt IN hgroup_list.pairs %]
<option[% ' selected="selected"' IF hgroup_lkp.exists(opt.key) %]
value="[% opt.key %]">[% opt.value | html_entity %]</option>
value="[% opt.key | html_entity %]">[% opt.value | html_entity %]</option>
[% END %]
</select>
[% END %]
@@ -92,7 +92,7 @@
rel="tooltip" data-placement="left" data-offset="5" data-title="Device Locations">
[% FOREACH loc IN lgroup_list %]
<option[% ' selected="selected"' IF lgroup_lkp.exists(loc) %]
value="[% loc %]">[% loc | html_entity %]</option>
value="[% loc | html_entity %]">[% loc | html_entity %]</option>
[% END %]
</select>
[% END %]
@@ -132,6 +132,6 @@
</div>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-pencil icon-large pull-left nd_navbar-icon"></i>
Redraw Map</button>

8
share/views/sidebar/device/ports.tt
View File

@@ -89,7 +89,7 @@
<em class="muted">MAC address format:</em><br/>
<select id="nd_mac-format" name="mac_format">
[% FOREACH format IN [ 'IEEE', 'Cisco', 'Microsoft', 'Sun' ] %]
<option[% ' selected="selected"' IF vars.sidebar_defaults.device_ports.mac_format == format %]>[% format %]</option>
<option[% ' selected="selected"' IF vars.sidebar_defaults.device_ports.mac_format == format %]>[% format | html_entity %]</option>
[% END %]
</select>
</li>
@@ -116,12 +116,12 @@
<em class="muted">Mark as Free if Down for:</em><br/>
<select id="nd_days-select" name="age_num">
[% FOREACH count IN [1..31] %]
<option[% ' selected="selected"' IF vars.sidebar_defaults.device_ports.age_num == count %]>[% count %]</option>
<option[% ' selected="selected"' IF vars.sidebar_defaults.device_ports.age_num == count %]>[% count | html_entity %]</option>
[% END %]
</select>
<select id="nd_age-select" name="age_unit">
[% FOREACH unit IN [ 'days', 'weeks', 'months', 'years' ] %]
<option[% ' selected="selected"' IF vars.sidebar_defaults.device_ports.age_unit == unit %]>[% unit %]</option>
<option[% ' selected="selected"' IF vars.sidebar_defaults.device_ports.age_unit == unit %]>[% unit | html_entity %]</option>
[% END %]
</select>
</li>
@@ -140,7 +140,7 @@
</div>
</div>
<div class="btn-group">
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info nd_sidebar-btn-drop">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info nd_sidebar-btn-drop">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Update View</button>
<button class="btn btn-info dropdown-toggle nd_sidebar-btn-drop-drop" data-toggle="dropdown">
<span class="caret"></span>

4
share/views/sidebar/report/ipinventory.tt
View File

@@ -37,7 +37,7 @@
<select id="nd_mac-format" class="nd_side-select" name="limit">
[% FOREACH size IN [ '32', '64', '128', '256', '512', '1024', '2048', '4096', '8192' ] %]
<option[% ' selected="selected"' IF (params.limit == size OR (NOT params.limit AND size == 2048)) %]>
[% size %]</option>
[% size | html_entity %]</option>
[% END %]
</select>
</li>
@@ -55,6 +55,6 @@
</div>
</fieldset>
<button id="[% report.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% report.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search IPs</button>

2
share/views/sidebar/report/moduleinventory.tt
View File

@@ -74,5 +74,5 @@
</label>
</div>
</fieldset>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Modules</button>

2
share/views/sidebar/report/netbios.tt
View File

@@ -14,6 +14,6 @@
</select>
</div>
<button id="[% report.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% report.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search NetBIOS</button>

2
share/views/sidebar/report/nodesdiscovered.tt
View File

@@ -48,5 +48,5 @@
<span class="nd_searchcheckbox uneditable-input">Match All Options</span>
</label>
</div>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Nodes</button>

2
share/views/sidebar/report/nodevendor.tt
View File

@@ -35,6 +35,6 @@
</div>
</fieldset>
<button id="[% report.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% report.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Vendors</button>

2
share/views/sidebar/report/portmultinodes.tt
View File

@@ -5,6 +5,6 @@
name="vlan" value="[% params.vlan | html_entity %]" type="text"
rel="tooltip" data-placement="left" data-offset="5" data-title="VLAN"/>
</div>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Ports</button>

2
share/views/sidebar/report/portssid.tt
View File

@@ -10,6 +10,6 @@
</select>
</div>
<button id="[% report.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% report.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search SSID</button>

6
share/views/sidebar/report/portutilization.tt
View File

@@ -4,16 +4,16 @@
<em class="muted">Mark as Free if Down for:</em><br/>
<select id="nd_days-select" name="age_num">
[% FOREACH count IN [1..31] %]
<option[% ' selected="selected"' IF vars.sidebar_defaults.report_portutilization.age_num == count %]>[% count %]</option>
<option[% ' selected="selected"' IF vars.sidebar_defaults.report_portutilization.age_num == count %]>[% count | html_entity %]</option>
[% END %]
</select>
<select id="nd_age-select" name="age_unit">
[% FOREACH unit IN [ 'days', 'weeks', 'months', 'years' ] %]
<option[% ' selected="selected"' IF vars.sidebar_defaults.report_portutilization.age_unit == unit %]>[% unit %]</option>
<option[% ' selected="selected"' IF vars.sidebar_defaults.report_portutilization.age_unit == unit %]>[% unit | html_entity %]</option>
[% END %]
</select>
</div>
<button id="[% report.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% report.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Run Report</button>

2
share/views/sidebar/report/subnets.tt
View File

@@ -28,5 +28,5 @@
</div>
</fieldset>
<button id="[% report.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% report.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Subnets</button>

2
share/views/sidebar/search/device.tt
View File

@@ -95,5 +95,5 @@
<span class="nd_searchcheckbox uneditable-input">Match All Options</span>
</label>
</div>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Devices</button>

4
share/views/sidebar/search/node.tt
View File

@@ -65,10 +65,10 @@
<em class="muted">MAC address format:</em><br/>
<select id="nd_node-mac-format" name="mac_format">
[% FOREACH format IN [ 'IEEE', 'Cisco', 'Microsoft', 'Sun' ] %]
<option[% ' selected="selected"' IF vars.sidebar_defaults.search_node.mac_format == format %]>[% format %]</option>
<option[% ' selected="selected"' IF vars.sidebar_defaults.search_node.mac_format == format %]>[% format | html_entity %]</option>
[% END %]
</select>
</div>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Nodes</button>

2
share/views/sidebar/search/port.tt
View File

@@ -28,5 +28,5 @@
<span class="nd_searchcheckbox uneditable-input">Ethernet Only</span>
</label>
</div>
<button id="[% tab.tag %]_submit" type="submit" class="btn btn-info">
<button id="[% tab.tag | html_entity %]_submit" type="submit" class="btn btn-info">
<i class="icon-search icon-large pull-left nd_navbar-icon"></i> Search Ports</button>