fixing xss
This commit is contained in:
7
public/js/bootstrap.min.js
vendored
7
public/js/bootstrap.min.js
vendored
File diff suppressed because one or more lines are too long
4
resources/views/layout1/popover-content.blade.php
Normal file
4
resources/views/layout1/popover-content.blade.php
Normal file
@@ -0,0 +1,4 @@
|
||||
@if($video->interpret) Artist: {{ $video->interpret }}<br>@endif
|
||||
@if($video->songtitle) Songtitle: {{ $video->songtitle }}<br>@endif
|
||||
@if($video->imgsource) Video Source: {{ $video->imgsource }}<br>@endif
|
||||
Category: {{ $video->category->name }}
|
||||
8
resources/views/layout1/video.blade.php
Normal file → Executable file
8
resources/views/layout1/video.blade.php
Normal file → Executable file
@@ -106,18 +106,16 @@
|
||||
<a href="{{url($video->id . '/fav')}}"><i class="fa fa-heart-o"></i></a>
|
||||
@endif
|
||||
</div>
|
||||
</button>
|
||||
<button class="fa fa-info-circle"
|
||||
id="infobox"
|
||||
style="cursor: pointer"
|
||||
data-toggle="popover"
|
||||
data-placement="top"
|
||||
data-trigger="hover"
|
||||
data-html="true"
|
||||
title="Information"
|
||||
data-content=" <div style='word-break: break-word;'>@if($video->interpret) <strong>Artist:</strong> {{$video->interpret}}<br>@endif
|
||||
@if($video->songtitle) <strong>Songtitle:</strong> {{$video->songtitle}}<br>@endif
|
||||
@if($video->imgsource) <strong>Video Source:</strong> {{$video->imgsource}} <br>
|
||||
@endif
|
||||
<strong>Category:</strong> {{$video->category->name}}</div>">
|
||||
data-content="@include('popover-content')">
|
||||
</button>
|
||||
<span id="uploader">uploaded by <a class="{{ $video->user->username }}" style="color: white" href="{{ url('user/' . $video->user->username) }}">{!! $video->user->displayName() !!}</a></span> <time class="timeago" data-toggle="tooltip" data-placement="top" datetime="{{$video->created_at->toIso8601String()}}" title="{{$video->created_at->toIso8601String()}}"></time>@if(auth()->check() && (auth()->user()->can('edit_video') || auth()->user()->id == $video->user_id)) <a class="edit_video" href="#" data-toggle="modal" data-target="#webmeditmodal">[edit]</a>@endif @if(auth()->check() && auth()->user()->can('delete_video'))<a class="delete_video" href="#">[del]</a>@endif
|
||||
</span>
|
||||
|
||||
Reference in New Issue
Block a user