harmacist/darkwire.io
1
0
Fork 0
mirror of https://github.com/darkwire/darkwire.io.git synced 2025-07-19 11:02:58 +00:00
Code Issues Projects Releases Wiki Activity

Sanitize input to prevent XSS

Browse Source
This commit is contained in:
Alan Friedman 2016-01-12 22:38:31 -05:00
parent 11814aae88
commit dc7ca8b7e7
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/js/main.js
View File

@ -191,7 +191,7 @@ $(function() {
// Prevents input from having injected markup
function cleanInput (input) {
var message = $('<div/>').text(input).text();
var message = $('<div/>').html(input).text();
message = Autolinker.link(message);
return message;
}