Changeset 11848 in josm for trunk/src/org/openstreetmap/josm/plugins/PluginHandler.java

Timestamp:

2017-04-07T00:18:07+02:00 (7 years ago)

Author:

Don-vip

Message:

fix #14613 - Special HTML characters not escaped in GUI error messages

File:

• trunk/src/org/openstreetmap/josm/plugins/PluginHandler.java (modified) (5 diffs)

trunk/src/org/openstreetmap/josm/plugins/PluginHandler.java

@@ -350 +350 @@
             String msg = tr("<html>Loading of the plugin \"{0}\" was requested."
                     + "<br>This plugin is no longer developed and very likely will produce errors."
-                    +"<br>It should be disabled.<br>Delete from preferences?</html>", unmaintained);
+                    +"<br>It should be disabled.<br>Delete from preferences?</html>",
+                    Utils.escapeReservedCharactersHTML(unmaintained));
             if (confirmDisablePlugin(parent, msg, unmaintained)) {
                 Main.pref.removeFromCollection("plugins", unmaintained);
@@ -506 +507 @@
                 "Plugin {0} requires {1} plugins which were not found. The missing plugins are:",
                 missingRequiredPlugin.size(),
-                plugin,
+                Utils.escapeReservedCharactersHTML(plugin),
                 missingRequiredPlugin.size()))
           .append(Utils.joinAsHtmlUnorderedList(missingRequiredPlugin))
@@ -723 +724 @@
             if (e.getCause() instanceof ClassNotFoundException) {
                 msg = tr("<html>Could not load plugin {0} because the plugin<br>main class ''{1}'' was not found.<br>"
-                        + "Delete from preferences?</html>", plugin.name, plugin.className);
+                        + "Delete from preferences?</html>", Utils.escapeReservedCharactersHTML(plugin.name), plugin.className);
             }
         } catch (RuntimeException e) { // NOPMD
@@ -919 +920 @@
           .append("<ul>");
         for (PluginInformation pi: plugins) {
-            sb.append("<li>").append(pi.name).append("</li>");
+            sb.append("<li>").append(Utils.escapeReservedCharactersHTML(pi.name)).append("</li>");
         }
         sb.append("</ul>")
@@ -1270 +1271 @@
         final StringBuilder msg = new StringBuilder(256);
         msg.append("<html>")
-           .append(tr("An unexpected exception occurred that may have come from the ''{0}'' plugin.", plugin.getPluginInformation().name))
+           .append(tr("An unexpected exception occurred that may have come from the ''{0}'' plugin.",
+                   Utils.escapeReservedCharactersHTML(plugin.getPluginInformation().name)))
            .append("<br>");
         if (plugin.getPluginInformation().author != null) {
-            msg.append(tr("According to the information within the plugin, the author is {0}.", plugin.getPluginInformation().author))
+            msg.append(tr("According to the information within the plugin, the author is {0}.",
+                    Utils.escapeReservedCharactersHTML(plugin.getPluginInformation().author)))
                .append("<br>");
         }