From 54766f336620ca0ce3b0b87a7a56382496e64b61 Mon Sep 17 00:00:00 2001
From: Nolan Evans <nolane@gmail.com>
Date: Tue, 21 Apr 2015 14:20:40 -0700
Subject: [PATCH] fix xss vulnerability in display class

---
 web/views/queue.erb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/web/views/queue.erb b/web/views/queue.erb
index 2da512eccc..98952eda83 100644
--- a/web/views/queue.erb
+++ b/web/views/queue.erb
@@ -19,7 +19,7 @@
   </thead>
   <% @messages.each_with_index do |msg, index| %>
     <tr>
-      <td><%= msg.display_class %></td>
+      <td><%= h(msg.display_class) %></td>
       <td>
         <% a = msg.display_args.inspect %>
         <% if a.size > 100 %>