Skip to content
Permalink
Browse files Browse the repository at this point in the history
Fix XSS in notices
  • Loading branch information
Andy Beverley committed Feb 8, 2021
1 parent e1646d5 commit aa30055
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion views/layouts/main.tt
Expand Up @@ -145,7 +145,7 @@
[% FOR notice IN login.login_notices %]
<div class="alert alert-info alert-dismissable" data-someid="[% notice.id %]">
<button id="my-alert" type="button" class="close" data-dismiss="alert" aria-hidden="true">&times;</button>
[% notice.notice.text %]
[% notice.notice.text | html %]
</div>
[% END %]

Expand Down

0 comments on commit aa30055

Please sign in to comment.