diff --git a/app/code/Magento/Backup/view/adminhtml/templates/backup/dialogs.phtml b/app/code/Magento/Backup/view/adminhtml/templates/backup/dialogs.phtml
index a72e646bcea82ccd5cbb95fc1a6e8d42b4b0f4e5..c3ac897edd8e53578fbbf2034208a7b7c566b6fc 100644
--- a/app/code/Magento/Backup/view/adminhtml/templates/backup/dialogs.phtml
+++ b/app/code/Magento/Backup/view/adminhtml/templates/backup/dialogs.phtml
@@ -147,8 +147,8 @@ require([
//<![CDATA[
backup = new AdminBackup();
- backup.rollbackUrl = '<?php /* @escapeNotVerified */ echo $block->escapeJs($rollbackUrl);?>';
- backup.backupUrl = '<?php /* @escapeNotVerified */ echo $block->escapeJs($backupUrl);?>';
+ backup.rollbackUrl = '<?php echo $block->escapeUrl($rollbackUrl); ?>';
+ backup.backupUrl = '<?php echo $block->escapeUrl($backupUrl); ?>';
//]]>
});
diff --git a/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/attribute/set/main.phtml b/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/attribute/set/main.phtml
index 2067b783e02667c83a914f7a2efc030beb77dc56..4379fa062a121a96750eee3856ea768c680310ae 100644
--- a/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/attribute/set/main.phtml
+++ b/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/attribute/set/main.phtml
@@ -214,7 +214,7 @@
if( editSet.SystemNodesExists(editSet.currentNode) ) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('This group contains system attributes. Please move system attributes to another group and try again.')) ?>'
+ content: '<?php echo $block->escapeJs(__('This group contains system attributes. Please move system attributes to another group and try again.')) ?>'
});
return;
}
@@ -343,7 +343,7 @@
failure : function(o) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('Sorry, we\'re unable to complete this request.')) ?>'
+ content: '<?php echo $block->escapeJs(__('Sorry, we\'re unable to complete this request.')) ?>'
});
},
@@ -360,7 +360,7 @@
rightBeforeAppend : function(tree, nodeThis, node, newParent) {
if (node.attributes.is_user_defined == 0) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('You can\'t remove attributes from this attribute set.')) ?>'
+ content: '<?php echo $block->escapeJs(__('You can\'t remove attributes from this attribute set.')) ?>'
});
return false;
} else {
@@ -376,7 +376,7 @@
if (node.attributes.is_unassignable == 0) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('You can\'t remove attributes from this attribute set.')) ?>'
+ content: '<?php echo $block->escapeJs(__('You can\'t remove attributes from this attribute set.')) ?>'
});
return false;
} else {
diff --git a/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/composite/fieldset/options/type/date.phtml b/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/composite/fieldset/options/type/date.phtml
index 52e49a744dec5fc26a0ff7f00ff522fc85bf4444..8eb1e7251d22d474a5d41d6d84575939eb7e2ee3 100644
--- a/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/composite/fieldset/options/type/date.phtml
+++ b/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/composite/fieldset/options/type/date.phtml
@@ -58,7 +58,7 @@ require([
if (dateTimeParts[i].value == "") return false;
}
return true;
- }, '<?php /* @escapeNotVerified */ echo $block->escapeJs( __('This is a required option.') )?>');
+ }, '<?php echo $block->escapeJs( __('This is a required option.') )?>');
<?php else: ?>
jQuery.validator.addMethod('validate-datetime-<?php /* @escapeNotVerified */ echo $_optionId ?>', function(v) {
var dateTimeParts = jQuery('.datetime-picker[id^="options_<?php /* @escapeNotVerified */ echo $_optionId ?>"]');
@@ -74,7 +74,7 @@ require([
}
}
return hasWithValue ^ hasWithNoValue;
- }, '<?php /* @escapeNotVerified */ echo $block->escapeJs( __('The field isn\'t complete.') )?>');
+ }, '<?php echo $block->escapeJs( __('The field isn\'t complete.') )?>');
<?php endif; ?>
//]]>
diff --git a/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/edit/price/tier.phtml b/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/edit/price/tier.phtml
index f7ae41f85effaf0a6a282a3000ccfd24cda66fe8..265ba1ad68f01de54977ec946747d8a743131184 100644
--- a/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/edit/price/tier.phtml
+++ b/app/code/Magento/Catalog/view/adminhtml/templates/catalog/product/edit/price/tier.phtml
@@ -58,12 +58,12 @@ var tierPriceRowTemplate = '<tr>'
+ '<td class="col-websites"<?php if (!$_showWebsite): ?> style="display:none"<?php endif; ?>>'
+ '<select class="<?php /* @escapeNotVerified */ echo $_htmlClass ?> required-entry" name="<?php /* @escapeNotVerified */ echo $_htmlName ?>[<%- data.index %>][website_id]" id="tier_price_row_<%- data.index %>_website">'
<?php foreach ($block->getWebsites() as $_websiteId => $_info): ?>
- + '<option value="<?php /* @escapeNotVerified */ echo $_websiteId ?>"><?php /* @escapeNotVerified */ echo $block->escapeJs($_info['name']) ?><?php if (!empty($_info['currency'])): ?> [<?php echo $block->escapeHtml($_info['currency']) ?>]<?php endif; ?></option>'
+ + '<option value="<?php /* @escapeNotVerified */ echo $_websiteId ?>"><?php echo $block->escapeJs($_info['name']) ?><?php if (!empty($_info['currency'])): ?> [<?php echo $block->escapeHtml($_info['currency']) ?>]<?php endif; ?></option>'
<?php endforeach ?>
+ '</select></td>'
+ '<td class="col-customer-group"><select class="<?php /* @escapeNotVerified */ echo $_htmlClass ?> custgroup required-entry" name="<?php /* @escapeNotVerified */ echo $_htmlName ?>[<%- data.index %>][cust_group]" id="tier_price_row_<%- data.index %>_cust_group">'
<?php foreach ($block->getCustomerGroups() as $_groupId => $_groupName): ?>
- + '<option value="<?php /* @escapeNotVerified */ echo $_groupId ?>"><?php /* @escapeNotVerified */ echo $block->escapeJs($_groupName) ?></option>'
+ + '<option value="<?php /* @escapeNotVerified */ echo $_groupId ?>"><?php echo $block->escapeJs($_groupName) ?></option>'
<?php endforeach ?>
+ '</select></td>'
+ '<td class="col-qty">'
diff --git a/app/code/Magento/ConfigurableProduct/view/adminhtml/templates/catalog/product/attribute/set/js.phtml b/app/code/Magento/ConfigurableProduct/view/adminhtml/templates/catalog/product/attribute/set/js.phtml
index 07641402238d615f7d44bf66724a6ab3092aca22..ff4d27dc6852ba55a3629b9aef754375a602704f 100644
--- a/app/code/Magento/ConfigurableProduct/view/adminhtml/templates/catalog/product/attribute/set/js.phtml
+++ b/app/code/Magento/ConfigurableProduct/view/adminhtml/templates/catalog/product/attribute/set/js.phtml
@@ -29,7 +29,7 @@ editSet.submit = editSet.submit.wrap(function(original) {
if (editSet.currentNode){
if (ConfigurableNodeExists(editSet.currentNode)) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('This group contains attributes used in configurable products. Please move these attributes to another group and try again.')) ?>'
+ content: '<?php echo $block->escapeJs(__('This group contains attributes used in configurable products. Please move these attributes to another group and try again.')) ?>'
});
return;
}
@@ -40,7 +40,7 @@ editSet.submit = editSet.submit.wrap(function(original) {
editSet.rightBeforeAppend = editSet.rightBeforeAppend.wrap(function(original, tree, nodeThis, node, newParent) {
if (node.attributes.is_configurable == 1) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('This attribute is used in configurable products. You cannot remove it from the attribute set.')) ?>'
+ content: '<?php echo $block->escapeJs(__('This attribute is used in configurable products. You cannot remove it from the attribute set.')) ?>'
});
return false;
}
@@ -50,7 +50,7 @@ editSet.rightBeforeAppend = editSet.rightBeforeAppend.wrap(function(original, tr
editSet.rightBeforeInsert = editSet.rightBeforeInsert.wrap(function(original, tree, nodeThis, node, newParent) {
if (node.attributes.is_configurable == 1) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('This attribute is used in configurable products. You cannot remove it from the attribute set.')) ?>'
+ content: '<?php echo $block->escapeJs(__('This attribute is used in configurable products. You cannot remove it from the attribute set.')) ?>'
});
return false;
}
diff --git a/app/code/Magento/Customer/view/adminhtml/templates/tab/cart.phtml b/app/code/Magento/Customer/view/adminhtml/templates/tab/cart.phtml
index 6b0c05f1d60fc4b051b467767f027d3b532aa38d..af042211d417e461cf004291bdfebd872f5127ad 100644
--- a/app/code/Magento/Customer/view/adminhtml/templates/tab/cart.phtml
+++ b/app/code/Magento/Customer/view/adminhtml/templates/tab/cart.phtml
@@ -57,14 +57,14 @@ require([
if (!itemId) {
alert({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('No item specified.')) ?>'
+ content: '<?php echo $block->escapeJs(__('No item specified.')) ?>'
});
return false;
}
confirm({
- content: '<?php /* @escapeNotVerified */ echo $block->escapeJs(__('Are you sure you want to remove this item?')) ?>',
+ content: '<?php echo $block->escapeJs(__('Are you sure you want to remove this item?')) ?>',
actions: {
confirm: function(){
self.reload({'delete':itemId});
diff --git a/app/code/Magento/Paypal/Block/Adminhtml/System/Config/Field/Country.php b/app/code/Magento/Paypal/Block/Adminhtml/System/Config/Field/Country.php
index 9dc304724dfad69f2c6f00a4a236735adf956904..c577cbff06e93108b92541c0f6090e8a7aab66be 100644
--- a/app/code/Magento/Paypal/Block/Adminhtml/System/Config/Field/Country.php
+++ b/app/code/Magento/Paypal/Block/Adminhtml/System/Config/Field/Country.php
@@ -110,7 +110,7 @@ class Country extends \Magento\Config\Block\System\Config\Form\Field
'store' => $this->getRequest()->getParam('store'),
StructurePlugin::REQUEST_PARAM_COUNTRY => '__country__',
];
- $urlString = $this->_escaper->escapeJs($this->_url->getUrl('*/*/*', $urlParams));
+ $urlString = $this->_escaper->escapeUrl($this->_url->getUrl('*/*/*', $urlParams));
$jsString = '
$("' . $element->getHtmlId() . '").observe("change", function () {
location.href = \'' . $urlString . '\'.replace("__country__", this.value);
@@ -119,7 +119,7 @@ class Country extends \Magento\Config\Block\System\Config\Form\Field
if ($this->_defaultCountry) {
$urlParams[self::REQUEST_PARAM_DEFAULT_COUNTRY] = '__default__';
- $urlString = $this->_escaper->escapeJs($this->_url->getUrl('*/*/*', $urlParams));
+ $urlString = $this->_escaper->escapeUrl($this->_url->getUrl('*/*/*', $urlParams));
$jsParentCountry = $this->_escaper->escapeJs($this->_defaultCountry);
$jsString .= '
$("' . $element->getHtmlId() . '_inherit").observe("click", function () {
diff --git a/app/code/Magento/SendFriend/view/frontend/templates/send.phtml b/app/code/Magento/SendFriend/view/frontend/templates/send.phtml
index c0696ceb000274cf1eaa82229bd5ad3f805ad022..a2999fe95d03ea87968a0589b61debfce4948e7f 100644
--- a/app/code/Magento/SendFriend/view/frontend/templates/send.phtml
+++ b/app/code/Magento/SendFriend/view/frontend/templates/send.phtml
@@ -16,8 +16,8 @@
<div class="actions-toolbar">
<div class="secondary">
<button type="button" id="btn-remove<%- data._index_ %>" class="action remove"
- title="<?php /* @escapeNotVerified */ echo $block->escapeHtmlAttr(__('Remove Recipent')) ?>">
- <span><?php /* @escapeNotVerified */ echo $block->escapeHtml(__('Remove')) ?></span>
+ title="<?php echo $block->escapeHtmlAttr(__('Remove Recipent')) ?>">
+ <span><?php echo $block->escapeHtml(__('Remove')) ?></span>
</button>
</div>
</div>
diff --git a/app/code/Magento/Widget/view/adminhtml/templates/instance/edit/layout.phtml b/app/code/Magento/Widget/view/adminhtml/templates/instance/edit/layout.phtml
index b40a0058f3f6723ca8a52239fc97ae0d5526b58f..418e3975d2aa25eb0a8232257b543d8eb621ad9b 100644
--- a/app/code/Magento/Widget/view/adminhtml/templates/instance/edit/layout.phtml
+++ b/app/code/Magento/Widget/view/adminhtml/templates/instance/edit/layout.phtml
@@ -45,18 +45,18 @@ var pageGroupTemplate = '<div class="fieldset-wrapper page_group_container" id="
'<col width="200" />'+
'<thead>'+
'<tr>'+
- '<th><label><?php /* @escapeNotVerified */ echo $block->escapeJs(__('%1', $container['label'])) ?></label></th>'+
- '<th><label><?php /* @escapeNotVerified */ echo $block->escapeJs(__('Container')) ?> <span class="required">*</span></label></th>'+
- '<th><label><?php /* @escapeNotVerified */ echo $block->escapeJs(__('Template')) ?></label></th>'+
+ '<th><label><?php echo $block->escapeJs(__('%1', $container['label'])) ?></label></th>'+
+ '<th><label><?php echo $block->escapeJs(__('Container')) ?> <span class="required">*</span></label></th>'+
+ '<th><label><?php echo $block->escapeJs(__('Template')) ?></label></th>'+
'</tr>'+
'</thead>'+
'<tbody>'+
'<tr>'+
'<td>'+
'<input disabled="disabled" type="radio" class="radio for_all" id="all_<?php /* @escapeNotVerified */ echo $container['name'] ?>_<%- data.id %>" name="widget_instance[<%- data.id %>][<?php /* @escapeNotVerified */ echo $container['name'] ?>][for]" value="all" onclick="WidgetInstance.togglePageGroupChooser(this)" checked="checked" /> '+
- '<label for="all_<?php /* @escapeNotVerified */ echo $container['name'] ?>_<%- data.id %>"><?php /* @escapeNotVerified */ echo $block->escapeJs(__('All')) ?></label><br />'+
+ '<label for="all_<?php /* @escapeNotVerified */ echo $container['name'] ?>_<%- data.id %>"><?php echo $block->escapeJs(__('All')) ?></label><br />'+
'<input disabled="disabled" type="radio" class="radio for_specific" id="specific_<?php /* @escapeNotVerified */ echo $container['name'] ?>_<%- data.id %>" name="widget_instance[<%- data.id %>][<?php /* @escapeNotVerified */ echo $container['name'] ?>][for]" value="specific" onclick="WidgetInstance.togglePageGroupChooser(this)" /> '+
- '<label for="specific_<?php /* @escapeNotVerified */ echo $container['name'] ?>_<%- data.id %>"><?php /* @escapeNotVerified */ echo $block->escapeJs(__('Specific %1', $container['label'])) ?></label>'+
+ '<label for="specific_<?php /* @escapeNotVerified */ echo $container['name'] ?>_<%- data.id %>"><?php echo $block->escapeJs(__('Specific %1', $container['label'])) ?></label>'+
'</td>'+
'<td>'+
'<div class="block_reference_container">'+