Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

Merge pull request #1 from alokmenghrajani/master

XSS fix for bunny1
  • Loading branch information...
commit e84376b0cafa26db25dfe6e15b1773374a03967b 2 parents d72dbca + f078b60
@ccheever authored
Showing with 1 addition and 1 deletion.
  1. +1 −1  src/bunny1.py
View
2  src/bunny1.py
@@ -170,7 +170,7 @@ def do_command(self, raw, a=(), k={}):
try:
return self.do_command(arg)
except HTTPRedirect, redir:
- url = redir.urls[0]
+ url = escape(redir.urls[0])
return "<code><b>bunny1</b> DEBUG: redirect to <a href='%s'>%s</a></code>" % (url, url)
# we don't want people calling things like __str__, etc.
Please sign in to comment.
Something went wrong with that request. Please try again.