Skip to content

Commit

Permalink
fixed a XSS vulnerability in user comment
Browse files Browse the repository at this point in the history
  • Loading branch information
phith0n committed Jun 18, 2022
1 parent 259abd2 commit 611124d
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion templates/archive/detail.html
Original file line number Diff line number Diff line change
Expand Up @@ -76,7 +76,7 @@ <h2 class="am-margin-top-xs"><i class="am-icon-paperclip"></i> <a href="{{ post.
</div>
{% endperm %}
<div class="am-margin-right-xs am-fr">
<a href="javascript:reply('{{ comment.id | escapejs }}', '{{ comment.content | truncatechars:20 | escapejs }}');">回复</a>
<a href="javascript:reply('{{ comment.id | escapejs | urlencode }}', '{{ comment.content | truncatechars:20 | escapejs | urlencode }}');">回复</a>
</div>
</div>
</header>
Expand Down

1 comment on commit 611124d

@phith0n
Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please sign in to comment.