diff options
| author | Santiago Pastorino <santiago@wyeworks.com> | 2011-01-12 22:05:52 -0200 |
|---|---|---|
| committer | Santiago Pastorino <santiago@wyeworks.com> | 2011-01-12 22:05:52 -0200 |
| commit | 1de47a0d56328768dfba0e5f86e1ff9491e62c20 (patch) | |
| tree | 9a637c8c58c4b488f79fb958b03c5bb091d76ca6 /actionpack/lib/action_view | |
| parent | 20897a6c2cef9c70b97eee1bcd2ed5b78303a274 (diff) | |
| download | rails-1de47a0d56328768dfba0e5f86e1ff9491e62c20.tar.gz rails-1de47a0d56328768dfba0e5f86e1ff9491e62c20.tar.bz2 rails-1de47a0d56328768dfba0e5f86e1ff9491e62c20.zip | |
button_tag should escape it content
Diffstat (limited to 'actionpack/lib/action_view')
| -rw-r--r-- | actionpack/lib/action_view/helpers/form_tag_helper.rb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/actionpack/lib/action_view/helpers/form_tag_helper.rb b/actionpack/lib/action_view/helpers/form_tag_helper.rb index 159b2a2b8e..d6b74974e9 100644 --- a/actionpack/lib/action_view/helpers/form_tag_helper.rb +++ b/actionpack/lib/action_view/helpers/form_tag_helper.rb @@ -457,7 +457,7 @@ module ActionView options[option] = "button" unless options[option] end - content_tag :button, label.to_s.html_safe, { "type" => options.delete("type") }.update(options) + content_tag :button, label, { "type" => options.delete("type") }.update(options) end # Displays an image which when clicked will submit the form. |