<!--

//Copyright Mangolab Ltd. 2008. All rights reserved.
//USES:
// - j_utils_strings.js
//SUMMARY:
// Encodes input to avoid XSS.
//HISTORY:
// 29.07.2009 - FC - FB Case: 2165.

function GetXssSecureValue(strInput){
	var strTemp = strInput;
	strTemp = SearchAndReplace(strTemp, '<', '&lt;');
	strTemp = SearchAndReplace(strTemp, '>', '&gt;');
	strTemp = SearchAndReplace(strTemp, '(', '&#40;');
	strTemp = SearchAndReplace(strTemp, ')', '&#41;');
	strTemp = SearchAndReplace(strTemp, '\'', '&#39;');
	strTemp = SearchAndReplace(strTemp, '"', '&#34;');
	var strSecureValue = strTemp;
	return strSecureValue;
}

function SetXssSecureFormValues(){
	var str = '';
	var elem = document.getElementById('frmGMGenerated').elements;
	for(var i = 0; i < elem.length; i++){
		if(elem[i].type == 'text' || elem[i].type == 'textarea'){
			elem[i].value = GetXssSecureValue(elem[i].value);
		}
	}
}

-->