You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@lucene.apache.org by bu...@apache.org on 2014/08/11 02:44:06 UTC
svn commit: r918982 - in /websites/staging/lucene/trunk/content: ./ core/
openrelevance/ pylucene/ pylucene/jcc/ solr/
Author: buildbot
Date: Mon Aug 11 00:44:05 2014
New Revision: 918982
Log:
Staging update by buildbot for lucene
Modified:
websites/staging/lucene/trunk/content/ (props changed)
websites/staging/lucene/trunk/content/core/corenews.html
websites/staging/lucene/trunk/content/core/developer.html
websites/staging/lucene/trunk/content/core/discussion.html
websites/staging/lucene/trunk/content/core/documentation.html
websites/staging/lucene/trunk/content/core/downloads.html
websites/staging/lucene/trunk/content/core/features.html
websites/staging/lucene/trunk/content/core/index.html
websites/staging/lucene/trunk/content/core/mirrors-core-latest-redir.html
websites/staging/lucene/trunk/content/core/mirrors-core-redir.html
websites/staging/lucene/trunk/content/core/quickstart.html
websites/staging/lucene/trunk/content/core/systemreqs.html
websites/staging/lucene/trunk/content/index.html
websites/staging/lucene/trunk/content/mainnews.html
websites/staging/lucene/trunk/content/openrelevance/index.html
websites/staging/lucene/trunk/content/openrelevance/mailing-lists.html
websites/staging/lucene/trunk/content/openrelevance/orpnews.html
websites/staging/lucene/trunk/content/privacy.html
websites/staging/lucene/trunk/content/pylucene/features.html
websites/staging/lucene/trunk/content/pylucene/index.html
websites/staging/lucene/trunk/content/pylucene/install.html
websites/staging/lucene/trunk/content/pylucene/jcc/features.html
websites/staging/lucene/trunk/content/pylucene/jcc/index.html
websites/staging/lucene/trunk/content/pylucene/jcc/install.html
websites/staging/lucene/trunk/content/pylucene/mailing-lists.html
websites/staging/lucene/trunk/content/pylucene/pynews.html
websites/staging/lucene/trunk/content/pylucene/version_control.html
websites/staging/lucene/trunk/content/site-instructions.html
websites/staging/lucene/trunk/content/solr/books.html
websites/staging/lucene/trunk/content/solr/discussion.html
websites/staging/lucene/trunk/content/solr/documentation.html
websites/staging/lucene/trunk/content/solr/downloads.html
websites/staging/lucene/trunk/content/solr/features.html
websites/staging/lucene/trunk/content/solr/index.html
websites/staging/lucene/trunk/content/solr/mirrors-solr-latest-redir.html
websites/staging/lucene/trunk/content/solr/mirrors-solr-redir.html
websites/staging/lucene/trunk/content/solr/quickstart.html
websites/staging/lucene/trunk/content/solr/screenshots.html
websites/staging/lucene/trunk/content/solr/solrnews.html
websites/staging/lucene/trunk/content/solr/tutorial.html
websites/staging/lucene/trunk/content/solr/versioncontrol.html
websites/staging/lucene/trunk/content/whoweare.html
Propchange: websites/staging/lucene/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Mon Aug 11 00:44:05 2014
@@ -1 +1 @@
-1615268
+1617186
Modified: websites/staging/lucene/trunk/content/core/corenews.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/corenews.html (original)
+++ websites/staging/lucene/trunk/content/core/corenews.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/developer.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/developer.html (original)
+++ websites/staging/lucene/trunk/content/core/developer.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/discussion.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/discussion.html (original)
+++ websites/staging/lucene/trunk/content/core/discussion.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/documentation.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/documentation.html (original)
+++ websites/staging/lucene/trunk/content/core/documentation.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/downloads.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/downloads.html (original)
+++ websites/staging/lucene/trunk/content/core/downloads.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/features.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/features.html (original)
+++ websites/staging/lucene/trunk/content/core/features.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/index.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/index.html (original)
+++ websites/staging/lucene/trunk/content/core/index.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/mirrors-core-latest-redir.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/mirrors-core-latest-redir.html (original)
+++ websites/staging/lucene/trunk/content/core/mirrors-core-latest-redir.html Mon Aug 11 00:44:05 2014
@@ -105,7 +105,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -126,14 +126,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/mirrors-core-redir.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/mirrors-core-redir.html (original)
+++ websites/staging/lucene/trunk/content/core/mirrors-core-redir.html Mon Aug 11 00:44:05 2014
@@ -103,7 +103,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -124,14 +124,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/quickstart.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/quickstart.html (original)
+++ websites/staging/lucene/trunk/content/core/quickstart.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/core/systemreqs.html
==============================================================================
--- websites/staging/lucene/trunk/content/core/systemreqs.html (original)
+++ websites/staging/lucene/trunk/content/core/systemreqs.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/index.html
==============================================================================
--- websites/staging/lucene/trunk/content/index.html (original)
+++ websites/staging/lucene/trunk/content/index.html Mon Aug 11 00:44:05 2014
@@ -60,7 +60,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -81,14 +81,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/mainnews.html
==============================================================================
--- websites/staging/lucene/trunk/content/mainnews.html (original)
+++ websites/staging/lucene/trunk/content/mainnews.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/openrelevance/index.html
==============================================================================
--- websites/staging/lucene/trunk/content/openrelevance/index.html (original)
+++ websites/staging/lucene/trunk/content/openrelevance/index.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/openrelevance/mailing-lists.html
==============================================================================
--- websites/staging/lucene/trunk/content/openrelevance/mailing-lists.html (original)
+++ websites/staging/lucene/trunk/content/openrelevance/mailing-lists.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/openrelevance/orpnews.html
==============================================================================
--- websites/staging/lucene/trunk/content/openrelevance/orpnews.html (original)
+++ websites/staging/lucene/trunk/content/openrelevance/orpnews.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/privacy.html
==============================================================================
--- websites/staging/lucene/trunk/content/privacy.html (original)
+++ websites/staging/lucene/trunk/content/privacy.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/features.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/features.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/features.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/index.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/index.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/index.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/install.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/install.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/install.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/jcc/features.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/jcc/features.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/jcc/features.html Mon Aug 11 00:44:05 2014
@@ -63,7 +63,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -84,14 +84,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/jcc/index.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/jcc/index.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/jcc/index.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/jcc/install.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/jcc/install.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/jcc/install.html Mon Aug 11 00:44:05 2014
@@ -63,7 +63,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -84,14 +84,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/mailing-lists.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/mailing-lists.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/mailing-lists.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/pynews.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/pynews.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/pynews.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/pylucene/version_control.html
==============================================================================
--- websites/staging/lucene/trunk/content/pylucene/version_control.html (original)
+++ websites/staging/lucene/trunk/content/pylucene/version_control.html Mon Aug 11 00:44:05 2014
@@ -61,7 +61,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -82,14 +82,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/site-instructions.html
==============================================================================
--- websites/staging/lucene/trunk/content/site-instructions.html (original)
+++ websites/staging/lucene/trunk/content/site-instructions.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/books.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/books.html (original)
+++ websites/staging/lucene/trunk/content/solr/books.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/discussion.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/discussion.html (original)
+++ websites/staging/lucene/trunk/content/solr/discussion.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/documentation.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/documentation.html (original)
+++ websites/staging/lucene/trunk/content/solr/documentation.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/downloads.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/downloads.html (original)
+++ websites/staging/lucene/trunk/content/solr/downloads.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/features.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/features.html (original)
+++ websites/staging/lucene/trunk/content/solr/features.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/index.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/index.html (original)
+++ websites/staging/lucene/trunk/content/solr/index.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/mirrors-solr-latest-redir.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/mirrors-solr-latest-redir.html (original)
+++ websites/staging/lucene/trunk/content/solr/mirrors-solr-latest-redir.html Mon Aug 11 00:44:05 2014
@@ -107,7 +107,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -128,14 +128,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/mirrors-solr-redir.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/mirrors-solr-redir.html (original)
+++ websites/staging/lucene/trunk/content/solr/mirrors-solr-redir.html Mon Aug 11 00:44:05 2014
@@ -106,7 +106,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -127,14 +127,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/quickstart.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/quickstart.html (original)
+++ websites/staging/lucene/trunk/content/solr/quickstart.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/screenshots.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/screenshots.html (original)
+++ websites/staging/lucene/trunk/content/solr/screenshots.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/solrnews.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/solrnews.html (original)
+++ websites/staging/lucene/trunk/content/solr/solrnews.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/tutorial.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/tutorial.html (original)
+++ websites/staging/lucene/trunk/content/solr/tutorial.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/solr/versioncontrol.html
==============================================================================
--- websites/staging/lucene/trunk/content/solr/versioncontrol.html (original)
+++ websites/staging/lucene/trunk/content/solr/versioncontrol.html Mon Aug 11 00:44:05 2014
@@ -62,7 +62,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -83,14 +83,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">
Modified: websites/staging/lucene/trunk/content/whoweare.html
==============================================================================
--- websites/staging/lucene/trunk/content/whoweare.html (original)
+++ websites/staging/lucene/trunk/content/whoweare.html Mon Aug 11 00:44:05 2014
@@ -59,7 +59,7 @@
return true;
}
- function selectProvider(form) {
+ function submitForm(form) {
provider = form.elements['searchProvider'].value;
if (provider == "any") {
if (Math.random() > 0.5) {
@@ -80,14 +80,17 @@
date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
expires = "; expires=" + date.toGMTString();
document.cookie = "searchProvider=" + provider + expires + "; path=/";
+
+ // replace some chars to not trigger XSS in external provider:
+ form.elements['q'].value = form.elements['q'].value.toString().replace(/[&"<>]+/g, " ");
return true;
}
</script>
- <form id="quick-search" method="GET" onsubmit="return selectProvider(this)"
+ <form id="quick-search" method="GET" onsubmit="return submitForm(this)"
action="http://search-lucene.com/lucene"
name="searchform">
<fieldset>
- <input type="search" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
+ <input type="search" id="q" name="q" value="Search with Apache Solr..." class="class1 class2 hint" accesskey="q"
onfocus="getBlank(this, 'Search with Apache Solr...')">
<span style="color:white">@</span>
<select name="searchProvider" id="searchProvider">