diff options
| author | Julien Lancelot <julien.lancelot@sonarsource.com> | 2014-12-22 15:45:22 +0100 |
|---|---|---|
| committer | Julien Lancelot <julien.lancelot@sonarsource.com> | 2014-12-22 15:45:22 +0100 |
| commit | 68e228ccb9dd642c7c753fb0e2f437f44d56db8c (patch) | |
| tree | ce805319afc3db1d33f6c58bef21cafe32898cbe | |
| parent | 7ea21fd06a448b1a38a0f8b262b600e6f6fb29fa (diff) | |
| download | sonarqube-68e228ccb9dd642c7c753fb0e2f437f44d56db8c.tar.gz sonarqube-68e228ccb9dd642c7c753fb0e2f437f44d56db8c.zip | |
SSF-26 Cross-Site Scripting on Manual Metrics
| -rw-r--r-- | server/sonar-web/src/main/webapp/WEB-INF/app/views/metrics/index.html.erb | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/server/sonar-web/src/main/webapp/WEB-INF/app/views/metrics/index.html.erb b/server/sonar-web/src/main/webapp/WEB-INF/app/views/metrics/index.html.erb index d308a1f9161..9aa9b6519fd 100644 --- a/server/sonar-web/src/main/webapp/WEB-INF/app/views/metrics/index.html.erb +++ b/server/sonar-web/src/main/webapp/WEB-INF/app/views/metrics/index.html.erb @@ -38,8 +38,8 @@ <td class="left" nowrap id="metric_key_<%= metric.key -%>"><span class="note"><%= metric.key -%></span></td> <td class="left" nowrap id="metric_name_<%= metric.key -%>"><%= h metric.short_name -%></td> <td class="left" id="metric_desc_<%= metric.key -%>"><%= h metric.description -%></td> - <td class="left" id="metric_domain_<%= metric.key -%>"><%= metric.domain -%></td> - <td class="left" id="metric_type_name<%= metric.key -%>"><%= metric.value_type_name -%></td> + <td class="left" id="metric_domain_<%= metric.key -%>"><%= h metric.domain -%></td> + <td class="left" id="metric_type_name<%= metric.key -%>"><%= h metric.value_type_name -%></td> <td class="right thin nowrap"> <% if is_admin? %> <a id="edit_<%= metric.key.parameterize -%>" href="<%=ApplicationController.root_context-%>/metrics/edit_form/<%= metric.id -%>" id="edit_<%= h(metric.short_name)-%>" class="open-modal link-action">Edit</a> |