StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POInserting rows with inputs in a table dynamically
primarykey
Id
9486470
data
AcceptedAnswerId
9486756
AnswerCount
1
ClosedDate
CommentCount
3
CommunityOwnedDate
CreationDate
2012-02-28T17:10:18.240
FavoriteCount
0
LastActivityDate
2012-02-28T17:26:59.907
LastEditDate
2012-02-28T17:18:18.733
LastEditorUserId
0
OwnerUserId
555370
ParentId
0
PostTypeId
1
Score
0
ViewCount
132
LastEditorDisplayName
user1106925
text
Body
<p>I have built a function using jQuery to insert into a table a new row including some inputs, like textboxes, checkboxes and one button.</p> <p>This is the code I have:</p> <pre><code>$('#AddEntry').click(function () { var lastTrClass = $('tr:last').attr('class'); var textBoxTitle = '<input id="titleid" type="text" value="" style="width: 100%; vertical-align: middle">'; var textBoxStartDate = '<input id="StartDate" type="text" class="required DatePicker" value="" style="width: 100%; vertical-align: middle">'; var checkBoxSync = '<input id="Sync" type="checkbox" checked="checked" disabled="disabled" value="true" style="vertical-align: middle">'; var lastDate = '<input id="LastSyncDate" class="required DatePicker" type="text" value="" style="width: 100%; vertical-align: middle">'; var buttonEdit = '<button id="btnEditar" class="EditButton icon_only text_only" style="vertical-align: middle;" type="button">Editar</button>'; if (lastTrClass == 'gradeA odd') { $('#DataTable > tbody:last').append("<tr class='gradeA even'><td>#</td><td>" + textBoxTitle + "</td><td>" + textBoxStartDate + "</td><td>" + checkBoxSync + "</td><td>" + lastDate + "</td><td>" + buttonEdit + "</td></tr>"); } else { $('#DataTable > tbody:last').append("<tr class='gradeA odd'><td>#</td><td>" + textBoxTitle + "</td><td>" + textBoxStartDate + "</td><td>" + checkBoxSync + "</td><td>" + lastDate + "</td><td>" + buttonEdit + "</td></tr>"); } }) </code></pre> <p>As you can see in my code, I'm generating the inputs into a <code>var</code>, but my question is whether or not this is safe. Is my code vulnerable to a JS injection or something like that? Is there a better way to do this? </p>
Tags
<javascript><jquery>
Title
Inserting rows with inputs in a table dynamically
singulars
PostAcceptedAnswerId
1. PO
  singulars
  PostTypePostTypeId
  PTAnswer
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USLeonardo Raygoza
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
  singulars
  PostTypePostTypeId
  PTAnswer
VotesPostIdCreationDate
1. This table or related slice is empty.
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.