Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
By tott on
I ran a "patch
This is the patch that adds "form_token()" to each form on the site to make sure that XSS isn't happening.
The problem is that I am using the xtemplate engine. I cannot figure out how to patch the search box on the top righthand side of my site to include a "form_token()". The search box code is hardcoded into the template, and I can't get any PHP code to execute in there. I have looked through the source for the xtemplate engine and can't figure out where I can insert a call to form_token().
There must be some other people out there who are running xtemplate on 4.6 and have run into this issue.
I was able to patch the other forms on my site without a problem, but this is kililng me! The standard search form is fine, but the search box on the top right is still broke.
Comments
Patch
You can apply the patch in http://drupal.org/node/90514.
--
The Manual | Troubleshooting FAQ | Tips for posting | How to report a security issue.
Thank you both for the quick
Thank you both for the quick response! Perfecto
you didnt mention what theme
you didnt mention what theme you were using , but i noticed this patch http://drupal.org/node/90514 which may help ?