aboutsummaryrefslogtreecommitdiffstats
path: root/html.c
diff options
context:
space:
mode:
authorGravatar Lukas Fleischer <cgit@cryptocrack.de>2011-07-22 20:47:19 (JST)
committerGravatar Lars Hjemli <hjemli@gmail.com>2011-07-22 21:21:28 (JST)
commitbebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5 (patch)
tree33e28db20cbae2aa513ccec38c7d4706654eed46 /html.c
parent1e25ac5b8fe0ca8760b2786b20d36013a6197e02 (diff)
downloadcgit-bebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5.zip
cgit-bebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5.tar.gz
Fix potential XSS vulnerability in rename hint
The file name displayed in the rename hint should be escaped to avoid XSS. Note that this vulnerability is only applicable when an attacker has gained push access to the repository. Signed-off-by: Lukas Fleischer <cgit@cryptocrack.de> Signed-off-by: Lars Hjemli <hjemli@gmail.com>
Diffstat (limited to 'html.c')
0 files changed, 0 insertions, 0 deletions