granicus.if.org Git - pdns/commit

]> granicus.if.org Git - pdns/commit

author	Pieter Lexis <pieter.lexis@powerdns.com>
	Wed, 2 Sep 2015 12:14:02 +0000 (14:14 +0200)
committer	Pieter Lexis <pieter.lexis@powerdns.com>
	Tue, 29 Sep 2015 07:38:14 +0000 (09:38 +0200)
commit	c7f59d62064ccfb9f71e9db8b1e139b355310564
tree	c5c430cdc22c6e7bb7516b30bab1efeea34c5995	tree \| snapshot
parent	7b75810edbc4b09ea1f3b7fbceb6b285999ad743	commit \| diff

Prevent XSS by escaping user input

Additionally, escape "'s so no attributes can be inserted into webpages.

Thanks to Pierre Jaury and Damien Cauquil at Sysdream for pointing this
out.

pdns/ws-auth.cc

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom