[TYPO3-core] FYI72: Fix bug #12623: Validation issues in sysext scheduler: Fix several errors
Ernesto Baschny [cron IT]
ernst at cron-it.de
Fri Nov 20 09:48:14 CET 2009
Francois Suter schrieb:
> Hi,
>
> Looks globally good. Nice catches on some stuff.
>
>> - Quote & to ampersands in links
>
> I'm not sure why that is necessary actually, although there's been a lot
> of talk about it recently. It's about XHTML compatibility, right?
It is twofold: produces valid HTML (will help IE8 users not being
"logged off" because of the compatibility mode fallback) and also
creates immunity against XSS attacks.
So you choose the reason: both are good.
Cheers,
Ernesto
More information about the TYPO3-team-core
mailing list