MDL-46073 badges: Make sure html tags are not used in badge description
authorYuliya Bozhko <yuliya.bozhko@totaralms.com>
Mon, 7 Jul 2014 21:34:51 +0000 (09:34 +1200)
committerYuliya Bozhko <yuliya.bozhko@totaralms.com>
Mon, 7 Jul 2014 21:34:51 +0000 (09:34 +1200)
Signed-off-by: Yuliya Bozhko <yuliya.bozhko@totaralms.com>
badges/edit_form.php

index 24e52d7..cebc483 100644 (file)
@@ -54,7 +54,7 @@ class edit_details_form extends moodleform {
         $mform->addRule('name', get_string('maximumchars', '', 255), 'maxlength', 255, 'client');
 
         $mform->addElement('textarea', 'description', get_string('description', 'badges'), 'wrap="virtual" rows="8" cols="70"');
-        $mform->setType('description', PARAM_CLEANHTML);
+        $mform->setType('description', PARAM_NOTAGS);
         $mform->addRule('description', null, 'required');
 
         $str = $action == 'new' ? get_string('badgeimage', 'badges') : get_string('newimage', 'badges');