summaryrefslogtreecommitdiff
path: root/misc/drupal.js
diff options
context:
space:
mode:
Diffstat (limited to 'misc/drupal.js')
-rw-r--r--misc/drupal.js9
1 files changed, 6 insertions, 3 deletions
diff --git a/misc/drupal.js b/misc/drupal.js
index 7f3a44cea..b962c89f7 100644
--- a/misc/drupal.js
+++ b/misc/drupal.js
@@ -38,7 +38,9 @@ if (typeof XMLHttpRequest == 'undefined') {
}
/**
- * Creates an HTTP GET request and sends the response to the callback function
+ * Creates an HTTP GET request and sends the response to the callback function.
+ *
+ * Note that dynamic arguments in the URI should be escaped with encodeURIComponent().
*/
function HTTPGet(uri, callbackFunction, callbackParameter) {
var xmlHttp = new XMLHttpRequest();
@@ -81,8 +83,9 @@ function HTTPPost(uri, callbackFunction, callbackParameter, object) {
var toSend = '';
if (typeof object == 'object') {
xmlHttp.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded');
- for (var i in object)
- toSend += (toSend ? '&' : '') + i + '=' + escape(object[i]);
+ for (var i in object) {
+ toSend += (toSend ? '&' : '') + i + '=' + encodeURIComponent(object[i]);
+ }
}
else {
toSend = object;
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-23 13:28:51 +0000