liquid_feedback_frontend

diff app/main/index/search.lua @ 46:aaba4d28dd53

find changesets by author, revision, files, or words in the commit message
Added missing HTML encoding for page titles (security fix!)
author bsw
date Mon Mar 15 03:04:19 2010 +0100 (2010-03-15)
parents 00d1004545f1
children af496baa9bda
line diff
     1.1 --- a/app/main/index/search.lua	Mon Mar 08 22:59:41 2010 +0100
     1.2 +++ b/app/main/index/search.lua	Mon Mar 15 03:04:19 2010 +0100
     1.3 @@ -1,7 +1,7 @@
     1.4  local search_for = param.get("search_for", atom.string) or "global"
     1.5  local search_string = param.get("search", atom.string)
     1.6  
     1.7 -slot.put_into("title", _("Search results for: '#{search}'", { search  = search_string }))
     1.8 +slot.put_into("title", encode.html(_("Search results for: '#{search}'", { search  = search_string })))
     1.9  
    1.10  
    1.11  if search_for == "global" or search_for == "member" then

Impressum / About Us