|  | @ -321,7 +321,11 @@ const luckysheetformula = { | 
			
		
	
		
		
			
				
					|  |  |             sheetmanage.changeSheetExec(_this.rangetosheet); |  |  |             sheetmanage.changeSheetExec(_this.rangetosheet); | 
			
		
	
		
		
			
				
					|  |  |         } |  |  |         } | 
			
		
	
		
		
			
				
					|  |  |     }, |  |  |     }, | 
			
		
	
		
		
			
				
					
					|  |  |     fucntionboxshow: function (r, c) { |  |  |     xssDeal: function(str) { | 
			
				
				
			
		
	
		
		
	
		
		
			
				
					|  |  |  |  |  |         if (typeof str !== 'string') return str; | 
			
		
	
		
		
			
				
					|  |  |  |  |  |         return str.replace(/<script>/g, '<script>').replace(/<\/script>/, '</script>'); | 
			
		
	
		
		
			
				
					|  |  |  |  |  |     }, | 
			
		
	
		
		
			
				
					|  |  |  |  |  |     fucntionboxshow: function(r, c) { | 
			
		
	
		
		
			
				
					|  |  | 
 |  |  | 
 | 
			
		
	
		
		
			
				
					|  |  |         if (!checkProtectionCellHidden(r, c, Store.currentSheetIndex)) { |  |  |         if (!checkProtectionCellHidden(r, c, Store.currentSheetIndex)) { | 
			
		
	
		
		
			
				
					|  |  |             $("#luckysheet-functionbox-cell").html(""); |  |  |             $("#luckysheet-functionbox-cell").html(""); | 
			
		
	
	
		
		
			
				
					|  | @ -346,7 +350,7 @@ const luckysheetformula = { | 
			
		
	
		
		
			
				
					|  |  |                 value = valueShowEs(r, c, d); |  |  |                 value = valueShowEs(r, c, d); | 
			
		
	
		
		
			
				
					|  |  |             } |  |  |             } | 
			
		
	
		
		
			
				
					|  |  |         } |  |  |         } | 
			
		
	
		
		
			
				
					
					|  |  | 
 |  |  |         value = this.xssDeal(value); | 
			
				
				
			
		
	
		
		
	
		
		
			
				
					|  |  |         _this.oldvalue = value; |  |  |         _this.oldvalue = value; | 
			
		
	
		
		
			
				
					|  |  |         $("#luckysheet-functionbox-cell").html(value); |  |  |         $("#luckysheet-functionbox-cell").html(value); | 
			
		
	
		
		
			
				
					|  |  |     }, |  |  |     }, | 
			
		
	
	
		
		
			
				
					|  | @ -3331,11 +3335,11 @@ const luckysheetformula = { | 
			
		
	
		
		
			
				
					|  |  |             $editer = $input; |  |  |             $editer = $input; | 
			
		
	
		
		
			
				
					|  |  |         let value1 = $editer.html(), |  |  |         let value1 = $editer.html(), | 
			
		
	
		
		
			
				
					|  |  |             value1txt = $editer.text(); |  |  |             value1txt = $editer.text(); | 
			
		
	
		
		
			
				
					
					|  |  | 
 |  |  |         let xssDeal = this.xssDeal | 
			
				
				
			
		
	
		
		
			
				
					
					|  |  |         setTimeout(function () { |  |  |         setTimeout(function() { | 
			
				
				
			
		
	
		
		
	
		
		
	
		
		
			
				
					|  |  |             let value = $editer.text(), |  |  |             let value = $editer.text(), | 
			
		
	
		
		
			
				
					|  |  |                 valuetxt = value; |  |  |                 valuetxt = value; | 
			
		
	
		
		
			
				
					
					|  |  | 
 |  |  |             value = xssDeal(value); | 
			
				
				
			
		
	
		
		
	
		
		
			
				
					|  |  |             if (value.length > 0 && value.substr(0, 1) == "=" && (kcode != 229 || value.length == 1)) { |  |  |             if (value.length > 0 && value.substr(0, 1) == "=" && (kcode != 229 || value.length == 1)) { | 
			
		
	
		
		
			
				
					|  |  |                 value = _this.functionHTMLGenerate(value); |  |  |                 value = _this.functionHTMLGenerate(value); | 
			
		
	
		
		
			
				
					|  |  |                 value1 = _this.functionHTMLGenerate(value1txt); |  |  |                 value1 = _this.functionHTMLGenerate(value1txt); | 
			
		
	
	
		
		
			
				
					|  | 
 |