Mercurialmoin/1.7 / changeset
summary | shortlog | changelog | graph | tags | files | changeset | raw | bz2
Fixed XSS issue in antispam
authorThomas Waldmann <tw AT waldmann-edv DOT de>
Tue Jan 27 21:17:55 2009 +0100 (19 months ago)
changeset 385489b91bf87dad
parent 385383bdb8f78bce
child 38555c4043e651b3
Fixed XSS issue in antispam
MoinMoin/security/antispam.pyfile | annotate | diff | revisions
     1.1 --- a/MoinMoin/security/antispam.py	Sat Jan 24 05:33:07 2009 +0100
     1.2 +++ b/MoinMoin/security/antispam.py	Tue Jan 27 21:17:55 2009 +0100
     1.3 @@ -185,7 +185,7 @@
     1.4                          # Log error and raise SaveError, PageEditor should handle this.
     1.5                          _ = editor.request.getText
     1.6                          msg = _('Sorry, can not save page because "%(content)s" is not allowed in this wiki.') % {
     1.7 -                                'content': match.group()
     1.8 +                                  'content': wikiutil.escape(match.group())
     1.9                                }
    1.10                          logging.info(msg)
    1.11                          raise editor.SaveError(msg)
moin/1.7