Home Explore Help
Register Sign In
wangjunyun
/
Dcat-Admin
mirror of https://gitee.com/jqhph/dcat-admin.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

修复 editable 触发 xss

laradocs 3 years ago
parent
7821166d02
commit
61227db72d
1 changed files with 5 additions and 1 deletions
Split View Show Diff Stats
  1. 5 1
      resources/views/grid/displayer/editinline/template.blade.php

+ 5 - 1
resources/views/grid/displayer/editinline/template.blade.php
View File 

@@ -162,7 +162,11 @@
 
             var data = res.data;
 
             if (res.status === true) {
 
                 Dcat.success(data.message);
 
-                $popover.data('display').html(label || '<i class="feather icon-edit-2"></i>');
 
+                var $display = $popover.data('display');
 
+                $display.text(label);
 
+                if (! label) {
 
+                    $display.html('<i class="feather icon-edit-2"></i>');
 
+                }
 
                 $trigger.data('value', val).data('original', val);
 
                 hide();
 
                 refresh && Dcat.reload();