forked from deblan/gist
[security] XSS injection patch
This commit is contained in:
parent
2ddfea60cc
commit
0529ec16d0
|
@ -123,7 +123,7 @@
|
|||
|
||||
var $pre = $('<pre>')
|
||||
.attr('class', 'brush: diff; syntaxhighlighter')
|
||||
.html(diffContent);
|
||||
.text(diffContent);
|
||||
|
||||
$('#diff-' + (u + 1).toString()).append($pre);
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue