diff options
| author | Your Name <you@example.com> | 2013-06-10 03:04:14 (GMT) |
|---|---|---|
| committer | Your Name <you@example.com> | 2013-06-10 03:04:14 (GMT) |
| commit | fbf1e134ffe9cf9e01b4116fca86e7a882d0cfd4 (patch) | |
| tree | 8406e7a3128713aae105d9cea61f6bebf11cfd19 | |
| parent | cc3057d0c31b2e7a151bd451c48ed9fec121b7a8 (diff) | |
security issue #1 reported by ignacio first SN 1337 h4x04
4 files changed, 10 insertions, 10 deletions
diff --git a/sugar_network_webui/templates/_context-article-view.html b/sugar_network_webui/templates/_context-article-view.html index 565193a..33f2df0 100644 --- a/sugar_network_webui/templates/_context-article-view.html +++ b/sugar_network_webui/templates/_context-article-view.html @@ -13,13 +13,13 @@ <br/> <article> <div class="resource-title"> - {{context['title']|safe}} + {{context['title']}} </div> <div class="resource-summary"> - {{context['summary']|safe}} + {{context['summary']}} </div> <div> - <pre>{{context['description']|safe}}</pre> + <pre>{{context['description']}}</pre> </div> <div> </article> diff --git a/sugar_network_webui/templates/_context-artifact-list.html b/sugar_network_webui/templates/_context-artifact-list.html index 332d26f..65b89e9 100644 --- a/sugar_network_webui/templates/_context-artifact-list.html +++ b/sugar_network_webui/templates/_context-artifact-list.html @@ -27,12 +27,12 @@ <a href="/artifacts/download/{{item['guid']}}" class="artifact-link" data-href="/artifacts/download/{{item['guid']}}"> - {{item['title']|safe}}</a> + {{item['title']}}</a> </div> <div class="resource-context-row"> <a href="/artifacts/download/{{item['guid']}}" data-href="/artifacts/download/{{item['guid']}}"> - {{item['description']|safe}} + {{item['description']}} </a> </div> <div class="mtime"> diff --git a/sugar_network_webui/templates/_context-resource-list.html b/sugar_network_webui/templates/_context-resource-list.html index 968a4e5..527c8b2 100644 --- a/sugar_network_webui/templates/_context-resource-list.html +++ b/sugar_network_webui/templates/_context-resource-list.html @@ -27,12 +27,12 @@ <a href="/{{item['type']|special_str}}/{{item['guid']}}" class="solution-link" data-href="/{{item['type']|special_str}}/{{item['guid']}}"> - {{item['title']|safe}}</a> + {{item['title']}}</a> </div> <div class="resource-context-row"> <a href="/{{item['type']|special_str}}/{{item['guid']}}" data-href="/{{item['type']|special_str}}/{{item['guid']}}"> - {{item['content']|safe}} + {{item['content']}} </a> </div> <div class="mtime"> diff --git a/sugar_network_webui/templates/_context-solution-list.html b/sugar_network_webui/templates/_context-solution-list.html index 7703c20..086f62b 100644 --- a/sugar_network_webui/templates/_context-solution-list.html +++ b/sugar_network_webui/templates/_context-solution-list.html @@ -6,10 +6,10 @@ </div> <div class="resource-header-column"> <div class="resource-title"> - {{resource['title']|safe}} + {{resource['title']}} </div> <div class="resource-content"> - <pre>{{resource['content']|safe}}</pre> + <pre>{{resource['content']}}</pre> </div> <div class='mtime'> {% if (session['connected'] or False) %} @@ -63,7 +63,7 @@ <div class="solution-content-column"> <img class="watermark" src="/static/icons/dialog-ok.png"/> <div class="resource-content"> - {{item['content']|safe}} + {{item['content']}} </div> <div class='mtime'> {% if (session['connected'] or False) %} |