Skip to content

Commit

Permalink
Merge pull request #3776 from martenson/xss-fix
Browse files Browse the repository at this point in the history 
[16.04] fix xss vuln in grids
  • Loading branch information
@nsoranzo
nsoranzo committed Mar 20, 2017
2 parents 4cf70ae + 12eb383 commit 2528a89
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion lib/galaxy/web/framework/helpers/grids.py
View file
Expand Up @@ -565,7 +565,7 @@ def get_value( self, trans, grid, item ):
ann_snippet += "..."
else:
ann_snippet = ""
return ann_snippet
return escape( ann_snippet )

def get_single_filter( self, user, a_filter ):
""" Filter by annotation and annotation owner. """
Expand Down

0 comments on commit 2528a89

Please sign in to comment.