Fix embarrasing XSS holes.

author: Arne Georg Gleditsch <argggh@lxr.linpro.no> 2010-02-05 14:52:07 +0100
committer: Arne Georg Gleditsch <argggh@lxr.linpro.no> 2010-02-05 14:52:07 +0100
commit: 5196a63710f4efce0e46961f0f2e7d321bf72d96 (patch)
tree: c07ee633cf1ba267f4d8706ff540f19a7c6789a9 /tmpl/line_reference.tt2
parent: 236cfb9a32a8daddfb0a3f4b190386046b0989d9 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/tmpl/line_reference.tt2 b/tmpl/line_reference.tt2
index f68296c..e535f49 100644
--- a/tmpl/line_reference.tt2
+++ b/tmpl/line_reference.tt2
@@ -1,4 +1,4 @@
-<a href="[% file %]#L[% line %]" [% navtarget %]
-onclick="return load_file('[% context.tree %]', '[% file %][% context.args_url %]', '[% context.release %]', [% line %]);">
- [% file %], line [% line %]
+<a href="[% file | html %]#L[% line | html %]" [% navtarget | html %]
+onclick="return load_file('[% context.tree | html %]', '[% file | html %][% context.args_url %]', '[% context.release | html %]', [% line | html %]);">
+ [% file | html %], line [% line | html %]
 </a>
author	Arne Georg Gleditsch <argggh@lxr.linpro.no>	2010-02-05 14:52:07 +0100
committer	Arne Georg Gleditsch <argggh@lxr.linpro.no>	2010-02-05 14:52:07 +0100
commit	5196a63710f4efce0e46961f0f2e7d321bf72d96 (patch)
tree	c07ee633cf1ba267f4d8706ff540f19a7c6789a9 /tmpl/line_reference.tt2
parent	236cfb9a32a8daddfb0a3f4b190386046b0989d9 (diff)