Skip to content
Permalink
Browse files Browse the repository at this point in the history
Merge pull request from GHSA-xx6g-jj35-pxjv
  • Loading branch information
brunnjf committed Nov 11, 2022
1 parent e5c757d commit e9606ab
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 4 deletions.
4 changes: 2 additions & 2 deletions wsgidav/dir_browser/_dir_browser.py
Expand Up @@ -10,7 +10,7 @@
from fnmatch import fnmatch
from urllib.parse import unquote

from jinja2 import Environment, FileSystemLoader
from jinja2 import Environment, FileSystemLoader, select_autoescape

from wsgidav import __version__, util
from wsgidav.dav_error import HTTP_MEDIATYPE_NOT_SUPPORTED, HTTP_OK, DAVError
Expand Down Expand Up @@ -73,7 +73,7 @@ def __init__(self, wsgidav_app, next_app, config):

# Prepare a Jinja2 template
templateLoader = FileSystemLoader(searchpath=self.htdocs_path)
templateEnv = Environment(loader=templateLoader)
templateEnv = Environment(loader=templateLoader, autoescape=select_autoescape())
self.template = templateEnv.get_template("template.html")

def is_disabled(self):
Expand Down
4 changes: 2 additions & 2 deletions wsgidav/dir_browser/htdocs/template.html
Expand Up @@ -81,7 +81,7 @@ <h1>
</a>
{% endif -%}
{%- if row.add_link_html %}
{{row.add_link_html}}
{{row.add_link_html | safe}}
{% endif -%}
</td>
<td>{{ row.display_type }}</td>
Expand All @@ -95,7 +95,7 @@ <h1>
<hr>

{% if trailer %}
<p class="trailer">{{ trailer }}</p>
<p class="trailer">{{ trailer | safe }}</p>
{% endif %}

<object id="winFirefoxPlugin" type="application/x-sharepoint"
Expand Down

0 comments on commit e9606ab

Please sign in to comment.