Replace all setTimeout strings with functions

This fixes a cross-site scripting vulnerability. Signed-off-by: Anders Kaseorg <[email protected]>
author: Anders Kaseorg <[email protected]> 2017-01-20 13:13:31 -0500
committer: Anders Kaseorg <[email protected]> 2017-01-21 16:52:27 -0500
commit: 88946d331aad96ecbdf9d570853121e5a7eb07ab (patch)
tree: 7e9f21a5e61e030352a81711776731d514707bd1 /js/functions.js
parent: 0047f2578f126cb6de2eed928e86ed7340c3854d (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/js/functions.js b/js/functions.js
index 384382554..63ff4121b 100755
--- a/js/functions.js
+++ b/js/functions.js
@@ -668,7 +668,7 @@ function hotkey_prefix_timeout() {
 			Element.hide('cmdline');
 		}
 
-		setTimeout("hotkey_prefix_timeout()", 1000);
+		setTimeout(hotkey_prefix_timeout, 1000);
 
 	} catch  (e) {
 		exception_error("hotkey_prefix_timeout", e);
@@ -1325,7 +1325,7 @@ function unsubscribeFeed(feed_id, title) {
 						updateFeedList();
 					} else {
 						if (feed_id == getActiveFeedId())
-							setTimeout("viewfeed({feed:-5})", 100);
+							setTimeout(function() { viewfeed({feed:-5}) }, 100);
 
 						if (feed_id < 0) updateFeedList();
 					}
author	Anders Kaseorg <[email protected]>	2017-01-20 13:13:31 -0500
committer	Anders Kaseorg <[email protected]>	2017-01-21 16:52:27 -0500
commit	88946d331aad96ecbdf9d570853121e5a7eb07ab (patch)
tree	7e9f21a5e61e030352a81711776731d514707bd1 /js/functions.js
parent	0047f2578f126cb6de2eed928e86ed7340c3854d (diff)