Skip to content
Permalink
Browse files Browse the repository at this point in the history
escape user input to fix XSS "vulnerability" (#195)
  • Loading branch information
dangoscomb authored and ytti committed Jul 1, 2019
1 parent 5add416 commit 55ab9bd
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion lib/oxidized/web/views/conf_search.haml
Expand Up @@ -3,7 +3,8 @@
%h4
%a{href: url_for('/nodes')} nodes
\/ Nodes that contain
%span "#{@to_research}"
%span
&= "#{@to_research}"

.row
.pull-right
Expand Down

0 comments on commit 55ab9bd

Please sign in to comment.