q/thirdculture-werc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

apps/wman/search.tpl: we already filter user input. avoid xss by printing filtered user input instead of unfiltered user input on error.

Browse source
This commit is contained in:
Stanley Lieber 2024-09-20 20:17:26 -04:00
parent 1a0337f684
commit bc939071cf
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
apps/wman/search.tpl
View file

@ -6,7 +6,7 @@
% if(! ~ $"post_arg_wman_search '') { % if(! ~ $"post_arg_wman_search '') {
% if(~ $"wman_search_results '') { % if(~ $"wman_search_results '') {
No matches found for <i>'%($post_arg_wman_search%)'</i>. No matches found for <i>'%($s%)'</i>.
% } % }
% if not { % if not {
<ul> <ul>