]> source.dussan.org Git - redmine.git/commitdiff
projects / redmine.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 0c2958d)
HTML escape at app/views/wikis/destroy.rhtml.
authorToshi MARUYAMA <marutosijp2@yahoo.co.jp>
Tue, 2 Aug 2011 13:21:08 +0000 (13:21 +0000)
committerToshi MARUYAMA <marutosijp2@yahoo.co.jp>
Tue, 2 Aug 2011 13:21:08 +0000 (13:21 +0000)
git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@6394 e93f8b46-1217-0410-a6f0-8f06a7374b81

app/views/wikis/destroy.rhtml patch | blob | history

diff --git a/app/views/wikis/destroy.rhtml b/app/views/wikis/destroy.rhtml
index b5b1de114864f7c1d607047feb9562a0934c4dd6..75c0eac24d6c5e38fd97e11866ef06bf97b9e989 100644 (file)
--- a/app/views/wikis/destroy.rhtml
+++ b/app/views/wikis/destroy.rhtml
@@ -1,7 +1,7 @@
 <h2><%=l(:label_confirmation)%></h2>
 
 <div class="box"><center>
-<p><strong><%= @project.name %></strong><br /><%=l(:text_wiki_destroy_confirmation)%></p>
+<p><strong><%= h(@project.name) %></strong><br /><%=l(:text_wiki_destroy_confirmation)%></p>
 
 <% form_tag({:controller => 'wikis', :action => 'destroy', :id => @project}) do %>
 <%= hidden_field_tag "confirm", 1 %>
Mirror of redmine code source: https://github.com/redmine/redmine