Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

Fixed #2290 -- Escaped HTML in admin messages. Thanks, Sean

git-svn-id: http://code.djangoproject.com/svn/django/trunk@3282 bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
commit 16c5cec9c149830be605354d910890a9b4a90b49 1 parent 930929e
@adrianholovaty adrianholovaty authored
Showing with 1 addition and 1 deletion.
  1. +1 −1  django/contrib/admin/templates/admin/base.html
View
2  django/contrib/admin/templates/admin/base.html
@@ -30,7 +30,7 @@
{% endif %}
{% if messages %}
- <ul class="messagelist">{% for message in messages %}<li>{{ message }}</li>{% endfor %}</ul>
+ <ul class="messagelist">{% for message in messages %}<li>{{ message|escape }}</li>{% endfor %}</ul>
{% endif %}
<!-- Content -->
Please sign in to comment.
Something went wrong with that request. Please try again.