Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-03 04:25:55 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update index.js, fix outgoing XSS

Browse Source 
Fix XSS on /outgoing route
This commit is contained in:
Mikica Ivosevic
2015-07-30 18:53:20 +02:00
parent cead53ec86
commit e24bd2c0e3
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/controllers/index.js
View File

@@ -181,7 +181,7 @@ Controllers.robots = function (req, res) {
Controllers.outgoing = function(req, res, next) { Controllers.outgoing = function(req, res, next) {
var url = req.query.url, var url = req.query.url,
data = { data = {
url: url, url: validator.escape(url),
title: meta.config.title, title: meta.config.title,
breadcrumbs: helpers.buildBreadcrumbs([{text: '[[notifications:outgoing_link]]'}]) breadcrumbs: helpers.buildBreadcrumbs([{text: '[[notifications:outgoing_link]]'}])
}; };