"DOM text reinterpreted as HTML" security issue fixed

static/standardUI/js/navbar.js

@@ -1,10 +1,13 @@
 function search() {
-  var input = document.getElementById("searchInput").value;
-  if (input === "" || input.replace(/\s/g, "") === "") {
+  const input = document.querySelector("#searchInput").value;
+  if (input === "" || input.trim() === "") {
   } else {
-    window.location.href = `/search/${input.replace(/\s/g, "+")}`;
+    window.location.href = `/search/${encodeURIComponent(
+      escape(input.trim())
+    )}`;
   }
 }
+
 function hamburger() {
   document.getElementById("hamburgerDropdown").classList.toggle("show");
 }

static/standardUI/js/searchBar.js

@@ -1,8 +1,9 @@
 function searchBar() {
-  var input = document.querySelector("#searchBarInput").value;
-  console.log(input);
-  if (input === "" || input.replace(/\s/g, "") === "") {
+  const input = document.querySelector("#searchBarInput").value;
+  if (input === "" || input.trim() === "") {
   } else {
-    window.location.href = `/search/${input.replace(/\s/g, "+")}`;
+    window.location.href = `/search/${encodeURIComponent(
+      escape(input.trim())
+    )}`;
   }
 }

static/tailwindUI/js/navbar.js

@@ -1,10 +1,13 @@
 function search() {
-  var input = document.getElementById("searchInput").value;
-  if (input === "" || input.replace(/\s/g, "") === "") {
+  const input = document.querySelector("#searchInput").value;
+  if (input === "" || input.trim() === "") {
   } else {
-    window.location.href = `/search/${input.replace(/\s/g, "+")}`;
+    window.location.href = `/search/${encodeURIComponent(
+      escape(input.trim())
+    )}`;
   }
 }
+
 function hamburger() {
   document.getElementById("hamburgerDropdown").classList.toggle("show");
 }