diff options
| author |  Junio C Hamano <gitster@pobox.com> | 2016-08-08 14:48:40 -0700 |
|---|---|---|
| committer | Junio C Hamano <gitster@pobox.com> | 2016-08-08 14:48:40 -0700 |
| commit | ae674b0130ca8fc83960d2549a68f1b2d573e6ec (patch) | |
| tree | a1e4e418ad45831bdaf9e36a56af4947eb57f817 | |
| parent | Merge branch 'jk/pack-objects-optim' (diff) | |
| parent | gitweb: escape link body in format_ref_marker (diff) | |
| download | tgif-ae674b0130ca8fc83960d2549a68f1b2d573e6ec.tar.xz | |
Merge branch 'ab/gitweb-link-html-escape'
The characters in the label shown for tags/refs for commits in
"gitweb" output are now properly escaped for proper HTML output.
* ab/gitweb-link-html-escape:
gitweb: escape link body in format_ref_marker
| -rwxr-xr-x | gitweb/gitweb.perl | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/gitweb/gitweb.perl b/gitweb/gitweb.perl index 2fddf750fa..33d701d852 100755 --- a/gitweb/gitweb.perl +++ b/gitweb/gitweb.perl @@ -2090,7 +2090,7 @@ sub format_ref_marker { -href => href( action=>$dest_action, hash=>$dest - )}, $name); + )}, esc_html($name)); $markers .= " <span class=\"".esc_attr($class)."\" title=\"".esc_attr($ref)."\">" . $link . "</span>"; |