aboutsummaryrefslogtreecommitdiffstats
path: root/perllib/FixMyStreet/App/Controller/Admin.pm
diff options
context:
space:
mode:
Diffstat (limited to 'perllib/FixMyStreet/App/Controller/Admin.pm')
-rw-r--r--perllib/FixMyStreet/App/Controller/Admin.pm6
1 files changed, 4 insertions, 2 deletions
diff --git a/perllib/FixMyStreet/App/Controller/Admin.pm b/perllib/FixMyStreet/App/Controller/Admin.pm
index 64cc9eaaf..c1afccdfd 100644
--- a/perllib/FixMyStreet/App/Controller/Admin.pm
+++ b/perllib/FixMyStreet/App/Controller/Admin.pm
@@ -557,7 +557,8 @@ sub update_extra_fields : Private {
if ($behaviour eq 'question') {
$meta->{required} = $c->get_param("metadata[$i].required") ? 'true' : 'false';
$meta->{variable} = 'true';
- $meta->{description} = $c->get_param("metadata[$i].description");
+ my $desc = $c->get_param("metadata[$i].description");
+ $meta->{description} = FixMyStreet::Template::sanitize($desc);
$meta->{datatype} = $c->get_param("metadata[$i].datatype");
if ( $meta->{datatype} eq "singlevaluelist" ) {
@@ -579,7 +580,8 @@ sub update_extra_fields : Private {
}
} elsif ($behaviour eq 'notice') {
$meta->{variable} = 'false';
- $meta->{description} = $c->get_param("metadata[$i].description");
+ my $desc = $c->get_param("metadata[$i].description");
+ $meta->{description} = FixMyStreet::Template::sanitize($desc);
$meta->{disable_form} = $c->get_param("metadata[$i].disable_form") ? 'true' : 'false';
} elsif ($behaviour eq 'hidden') {
$meta->{automated} = 'hidden_field';
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-27 05:10:54 +0000