XSS sanitize standard page url parameters

author: James Moger <james.moger@gitblit.com> 2014-09-06 11:27:04 -0400
committer: James Moger <james.moger@gitblit.com> 2014-09-07 11:43:33 -0400
commit: dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c (patch)
tree: 1fe567f2e08d9ed039abf7cd7b469e7885858c81 /src/main/java/com/gitblit/wicket/GitBlitWebApp.java
parent: fc3a39d464b1303f0b7d01d0160f81cbbb80a98b (diff)
download: gitblit-dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c.tar.gz
gitblit-dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/main/java/com/gitblit/wicket/GitBlitWebApp.java b/src/main/java/com/gitblit/wicket/GitBlitWebApp.java
index 6cf5f582..38dbf57d 100644
--- a/src/main/java/com/gitblit/wicket/GitBlitWebApp.java
+++ b/src/main/java/com/gitblit/wicket/GitBlitWebApp.java
@@ -255,7 +255,7 @@ public class GitBlitWebApp extends WebApplication implements GitblitWicketApp {
 		if (!settings.getBoolean(Keys.web.mountParameters, true)) {
 			parameters = new String[] {};
 		}
-		mount(new GitblitParamUrlCodingStrategy(settings, location, clazz, parameters));
+		mount(new GitblitParamUrlCodingStrategy(settings, xssFilter, location, clazz, parameters));
 
 		// map the mount point to the cache control definition
 		if (clazz.isAnnotationPresent(CacheControl.class)) {
author	James Moger <james.moger@gitblit.com>	2014-09-06 11:27:04 -0400
committer	James Moger <james.moger@gitblit.com>	2014-09-07 11:43:33 -0400
commit	dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c (patch)
tree	1fe567f2e08d9ed039abf7cd7b469e7885858c81 /src/main/java/com/gitblit/wicket/GitBlitWebApp.java
parent	fc3a39d464b1303f0b7d01d0160f81cbbb80a98b (diff)
download	gitblit-dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c.tar.gz gitblit-dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c.zip