Bug 13618: Add html filters to all the variables

[koha.git] / koha-tmpl / intranet-tmpl / prog / en / modules / members / printinvoice.tt

diff --git a/koha-tmpl/intranet-tmpl/prog/en/modules/members/printinvoice.tt b/koha-tmpl/intranet-tmpl/prog/en/modules/members/printinvoice.tt
index ec3ddf6..2b1e066 100644 (file)
--- a/koha-tmpl/intranet-tmpl/prog/en/modules/members/printinvoice.tt
+++ b/koha-tmpl/intranet-tmpl/prog/en/modules/members/printinvoice.tt
@@ -1,12 +1,13 @@
+[% USE raw %]
 [% USE Asset %]
 [% USE Koha %]
 [% USE Branches %]
 [% USE KohaDates %]
 [% SET footerjs = 1 %]
 [% INCLUDE 'doc-head-open.inc' %]
-<title>Print receipt for [% patron.cardnumber %]</title>
+<title>Print receipt for [% patron.cardnumber | html %]</title>
 [% INCLUDE 'doc-head-close.inc' %]
-[% Asset.css("css/printreceiptinvoice.css") %]
+[% Asset.css("css/printreceiptinvoice.css") | $raw %]
 </head>
 
 <body id="printinvoice" class="pat">
@@ -17,7 +18,7 @@
 [% IF ( LibraryName ) %]
   <tr>
     <th colspan="5" class="centerednames">
-               <h3>[% LibraryName %]</h3>
+               <h3>[% LibraryName | html %]</h3>
        </th>
   </tr>
 [% END %]
@@ -28,13 +29,13 @@
   </tr>
   <tr>
     <th colspan="5" class="centerednames">
-        <h2>[% Branches.GetName( patron.branchcode ) %]</h2>
+        <h2>[% Branches.GetName( patron.branchcode ) | html %]</h2>
        </th>
   </tr>
   <tr>
     <th colspan="5" >
-        Bill to: [% patron.firstname %] [% patron.surname %] <br />
-        Card number: [% patron.cardnumber %]<br />
+        Bill to: [% patron.firstname | html %] [% patron.surname | html %] <br />
+        Card number: [% patron.cardnumber | html %]<br />
        </th>
   </tr>
   <tr>
@@ -60,20 +61,20 @@
           [% CASE 'M' %]Sundry
           [% CASE 'L' %]Lost Item
           [% CASE 'W' %]Writeoff
-          [% CASE %][% account.accounttype %]
+          [% CASE %][% account.accounttype | html %]
         [%- END -%]
-        [%- IF account.description %], [% account.description %][% END %]
+        [%- IF account.description %], [% account.description | html %][% END %]
       </td>
-      <td>[% account.note %]</td>
-      [% IF ( account.amountcredit ) %]<td class="credit">[% ELSE %]<td class="debit">[% END %][% account.amount %]</td>
-      [% IF ( account.amountoutstandingcredit ) %]<td class="credit">[% ELSE %]<td class="debit">[% END %][% account.amountoutstanding %]</td>
+      <td>[% account.note | html %]</td>
+      [% IF ( account.amountcredit ) %]<td class="credit">[% ELSE %]<td class="debit">[% END %][% account.amount | html %]</td>
+      [% IF ( account.amountoutstandingcredit ) %]<td class="credit">[% ELSE %]<td class="debit">[% END %][% account.amountoutstanding | html %]</td>
     </tr>
 
   [% END %]
 <tfoot>
   <tr>
     <td colspan="4">Total outstanding dues as on date: </td>
-    [% IF ( totalcredit ) %]<td class="credit">[% ELSE %]<td class="debit">[% END %][% total %]</td>
+    [% IF ( totalcredit ) %]<td class="credit">[% ELSE %]<td class="debit">[% END %][% total | html %]</td>
   </tr>
   </tfoot>
 </table>