projects
/
project
/
luci.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(from:
5c31937
)
luci-base: escape path strings and field parameter
author
Jo-Philipp Wich
<jo@mein.io>
Sat, 7 Apr 2018 09:43:44 +0000
(11:43 +0200)
committer
Jo-Philipp Wich
<jo@mein.io>
Sat, 7 Apr 2018 09:43:44 +0000
(11:43 +0200)
Prevent various XSS vectors by not interpolating field and path values
verbatim into script and html contexts.
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
No differences found