Permalink
Browse files

Fixed xss issue

  • Loading branch information...
miketanderson committed Jul 1, 2015
1 parent 31d3ef5 commit 89d7cbcd3697c8a842f1a61b99e9a78f295798fb
Showing with 2 additions and 2 deletions.
  1. +2 −2 app/views/events/_menu.html.erb
@@ -2,9 +2,9 @@
<% @classifications.each do |cls| %>
<% if cls.locked && cls.hotkey %>
- <%= drop_down_item "#{cls.name}<span class='shortcut'>#{cls.shortcut}</span>", '#', nil, { :class => 'classification', :"data-classification-id" => cls.id.to_i } %>
+ <%= drop_down_item "#{sanitize cls.name}<span class='shortcut'>#{cls.shortcut}</span>", '#', nil, { :class => 'classification', :"data-classification-id" => cls.id.to_i } %>
<% else %>
- <%= drop_down_item "#{cls.name}", '#', nil, { :class => 'classification', :"data-classification-id" => cls.id.to_i } %>
+ <%= drop_down_item "#{sanitize cls.name}", '#', nil, { :class => 'classification', :"data-classification-id" => cls.id.to_i } %>
<% end %>
<% end %>

0 comments on commit 89d7cbc

Please sign in to comment.