Merged in from DEV trunk...

KTC-177 "RSS feed appears wrong when launched from the 'Actions on this folder' when the folder has the internationalisation string as its name or the name of any of its subfolders." Fixed. added html encoding to title and removed sanitize from template... Committed By: Jalaloedien Abrahams Reviewed By: Conrad Vermeulen git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/STABLE/trunk@7034 c91229c3-7414-0410-bfa2-8a42b809f60b

Merged in from DEV trunk...
KTC-177 "RSS feed appears wrong when launched from the 'Actions on this folder' when the folder has the internationalisation string as its name or the name of any of its subfolders." Fixed. added html encoding to title and removed sanitize from template... Committed By: Jalaloedien Abrahams Reviewed By: Conrad Vermeulen git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/STABLE/trunk@7034 c91229c3-7414-0410-bfa2-8a42b809f60b
kevin_fourie
1 parent 4dbe6432
Showing 3 changed files with 4 additions and 4 deletions
lib/storage/ondiskhashedstoragemanager.inc.php
plugins/rssplugin/KTrss.inc.php
plugins/rssplugin/templates/RSSPlugin/dashlet.smarty
@@ -148,7 +148,7 @@ class KTOnDiskHashedStorageManager extends KTStorageManager {
             $oUrlEncodedFileName = $oDocument->getFileName( );
             $browser = $_SERVER['HTTP_USER_AGENT'];
             if ( strpos( strtoupper( $browser), 'MSIE') !== false) {
-                $oUrlEncodedFileName = rawurlencode( $oUrlEncodedFileName);
+                $oUrlEncodedFileName = htmlentities($oUrlEncodedFileName, ENT_QUOTES, 'UTF-8');
             }
             //set the correct headers
             header("Content-Type: " . $mimetype);
@@ -293,7 +293,7 @@ class KTrss{
 	    		$sTypeSelect = 'document.transactionhistory&amp;fDocumentId';
 	    	}
 	    	$feed .= "<item>\n" .
-	    	         	"<title>".KTrss::rss_sanitize($aItems[0][0][name],false)."</title>\n" .
+	    	         	"<title>".htmlentities(KTrss::rss_sanitize($aItems[0][0][name],false), ENT_QUOTES, 'UTF-8')."</title>\n" .
 	    	         	"<link>".$hostPath."action.php?kt_path_info=ktcore.actions.".$sTypeSelect."=".$aItems[0][0]['id']."</link>\n" .
 	    	         	"<description>\n" .
 	    	         	"&lt;table border='0' width='90%'&gt;\n".
@@ -309,7 +309,7 @@ class KTrss{
 									"&lt;hr&gt;\n".
 									"&lt;table width='95%'&gt;\n".
 										"&lt;tr&gt;\n".
-											"&lt;td&gt;Filename: ".KTrss::rss_sanitize($aItems[0][0][filename] )."&lt;/td&gt;\n".
+											"&lt;td&gt;Filename: ".KTrss::rss_sanitize($aItems[0][0][filename])."&lt;/td&gt;\n".
 											"&lt;td&gt;\n".
 										"&lt;/tr&gt;\n".
 										"&lt;tr&gt;\n".
@@ -26,7 +26,7 @@
 		<table width='90%'>
 		    {section name=i start=0 loop=$itemcount}
 			<tr>
-				<td><strong><a href='{$internalrss.items[i].link}'>{$internalrss.items[i].title|sanitize}</a><strong></td>
+				<td><strong><a href='{$internalrss.items[i].link}'>{$internalrss.items[i].title}</a><strong></td>
 			</tr>
 			<tr>
 				<td>{$internalrss.items[i].description}</td>