jaculabilis/danbooru
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

added sanitize, fixes #26: Clicking the wiki link withing comments gives a "page does not exist" error

Browse Source
This commit is contained in:
albert
2011-09-13 15:19:07 -04:00
parent 6da2bbde0d
commit a19dd6a69f
5 changed files with 25 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/views/notes/_note.html.erb
View File

@@ -1 +1 @@
<%= content_tag(:article, raw(note.body), "data-width" => note.width, "data-height" => note.height, "data-x" => note.x, "data-y" => note.y, "data-id" => note.id) %>
<%= content_tag(:article, raw(Sanitize.clean(note.body)), "data-width" => note.width, "data-height" => note.height, "data-x" => note.x, "data-y" => note.y, "data-id" => note.id) %>