]> Lady’s Gitweb - Gitweb/commitdiff
Lady’s Gitweb / Gitweb / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side (from: fcd0466)
gitweb: escape link body in format_ref_marker
authorAndreas Brauchli <redacted>
Fri, 29 Jul 2016 14:49:37 +0000 (16:49 +0200)
committerLady <redacted>
Mon, 6 Apr 2026 04:51:32 +0000 (00:51 -0400)
Fix a case where an html link can be generated from unescaped input
resulting in invalid strict xhtml or potentially injected code.

An overview of a repo with a tag "1.0.0&0.0.1" would previously result
in an unescaped ampersand in the link body.

Signed-off-by: Andreas Brauchli <redacted>
Acked-by: Jakub Narębski <redacted>
Signed-off-by: Junio C Hamano <redacted>

No differences found
🐙🌐 Git·web: A C·G·I script for rendering Git repositories
This page took 0.194224 seconds and 4 git commands to generate.