lightcordwarez
/
BetterDiscordApp-v2
mirror of https://github.com/JsSucks/BetterDiscordApp
1
0
Fork 0
Code Issues 3 Releases Wiki Activity

Publicservers user data escape

This commit is contained in:
Jiiks 2016-08-11 17:53:25 +03:00
parent 8625b1bdbf
commit b28ef7abc5
2 changed files with 15 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
js/main.js
View File

@ -1004,15 +1004,17 @@ PublicServers.prototype.loadServers = function(dataset, search, clear) {
html += '<span class="server-official">Official!</span>';
}
html += '<span class="server-name-span">' + source.name + '</span>';
html += '<span class="server-name-span">' + self.escape(source.name) + '</span>';
var tags = [];
source.categories.forEach(function(tag) {
tags.push(tag.name);
});
var desc =
html += '<span class="server-tags">'+tags.join(", ")+'</span>';
html += '<span class="server-description">'+(source.description == undefined ? "No Description" : source.description)+'</span>';
html += '<span class="server-description">'+(source.description == undefined ? "No Description" : self.escape(source.description)) +'</span>';
html += '</div>';
html += '</div>';
html += '<div class="server-info server-members">';
@ -1107,6 +1109,15 @@ PublicServers.prototype.joinServer = function (code) {
$(".create-guild-container input").val(code);
$(".form.join-server .btn-primary").click();
};
PublicServers.prototype.escape = function(unsafe) {
return unsafe
.replace(/&/g, "&amp;")
.replace(/</g, "&lt;")
.replace(/>/g, "&gt;")
.replace(/"/g, "&quot;")
.replace(/'/g, "&#039;");
};
/* BetterDiscordApp QuickEmoteMenu JavaScript
* Version: 1.3
* Author: Jiiks | http://jiiks.net

4
js/main.min.js vendored
View File

File diff suppressed because one or more lines are too long