forked from deblan/gist
[security] XSS injection patch
This commit is contained in:
parent
2ddfea60cc
commit
0529ec16d0
|
@ -123,7 +123,7 @@
|
||||||
|
|
||||||
var $pre = $('<pre>')
|
var $pre = $('<pre>')
|
||||||
.attr('class', 'brush: diff; syntaxhighlighter')
|
.attr('class', 'brush: diff; syntaxhighlighter')
|
||||||
.html(diffContent);
|
.text(diffContent);
|
||||||
|
|
||||||
$('#diff-' + (u + 1).toString()).append($pre);
|
$('#diff-' + (u + 1).toString()).append($pre);
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue