]> git.ipfire.org Git - thirdparty/pdns.git/commit
projects / thirdparty / pdns.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ddc9a4f) | patch
Prevent XSS by escaping user input 2767/head
authorPieter Lexis <pieter.lexis@powerdns.com>
Wed, 2 Sep 2015 12:14:02 +0000 (14:14 +0200)
committerPieter Lexis <pieter.lexis@powerdns.com>
Wed, 30 Sep 2015 09:36:55 +0000 (11:36 +0200)
commit416d252f977cae447c2bf4fa9a6ba89480fb07dd
tree89bd21afac6b2b6af9b89299a4d6ce375c9b3660tree
parentddc9a4f0e9a5a77aa331bcadd6365ee28ec3675ecommit | diff
Prevent XSS by escaping user input

Additionally, escape "'s so no attributes can be inserted into webpages.

Thanks to Pierre Jaury and Damien Cauquil at Sysdream for pointing this
out.
pdns/ws-auth.cc diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.