Skip to content

Commit

Permalink
removed safe from auto escape html due to security concern
Browse files Browse the repository at this point in the history
  • Loading branch information
@anandtiwarics
anandtiwarics committed Nov 25, 2021
1 parent b9fd50c commit 793e948
Show file tree
Hide file tree
Showing 4 changed files with 10 additions and 10 deletions.
6 changes: 3 additions & 3 deletions templates/networkscanners/scans/vuln_details.html
View file
Expand Up @@ -31,7 +31,7 @@ <h5 class="mb-0">
<div id="collapseOne" class="collapse show" aria-labelledby="headingOne"
data-parent="#accordionExample">
<div class="card-body">
{{ data.description | safe }}
{{ data.description }}

</div>
</div>
Expand Down Expand Up @@ -73,7 +73,7 @@ <h5 class="mb-0">
<div id="collapseThree" class="collapse" aria-labelledby="headingThree"
data-parent="#accordionExample">
<div class="card-body">
{{ data.solution | safe }}
{{ data.solution }}
</div>
</div>
</div>
Expand All @@ -90,7 +90,7 @@ <h5 class="mb-0">
<div id="collapseFour" class="collapse" aria-labelledby="headingFour"
data-parent="#accordionExample">
<div class="card-body">
<a href="{{ data.references | safe }}">{{ data.references | safe }}</a>
<a href="{{ data.references }}">{{ data.references }}</a>
</div>
</div>
</div>
Expand Down
2 changes: 1 addition & 1 deletion templates/pentest/manual_vuln_data.html
View file
Expand Up @@ -76,7 +76,7 @@ <h5 class="mb-0">
<div id="collapse4" class="collapse" aria-labelledby="heading4"
data-parent="#accordionExample">
<div class="card-body">
{{ data.reference | safe }}
{{ data.reference }}
</div>
</div>
</div>
Expand Down
6 changes: 3 additions & 3 deletions templates/staticscanners/scans/vuln_details.html
View file
Expand Up @@ -31,7 +31,7 @@ <h5 class="mb-0">
<div id="collapseOne" class="collapse show" aria-labelledby="headingOne"
data-parent="#accordionExample">
<div class="card-body">
{{ data.description | safe }}
{{ data.description }}

</div>
</div>
Expand Down Expand Up @@ -68,7 +68,7 @@ <h5 class="mb-0">
<div id="collapseThree" class="collapse" aria-labelledby="headingThree"
data-parent="#accordionExample">
<div class="card-body">
<a href="{{ data.solution | safe }}">{{ data.solution | safe }}</a>
<a href="{{ data.solution }}">{{ data.solution }}</a>
</div>
</div>
</div>
Expand All @@ -85,7 +85,7 @@ <h5 class="mb-0">
<div id="collapseFour" class="collapse" aria-labelledby="headingFour"
data-parent="#accordionExample">
<div class="card-body">
<a href="{{ data.references | safe }}">{{ data.references | safe }}</a>
<a href="{{ data.references }}">{{ data.references }}</a>
</div>
</div>
</div>
Expand Down
6 changes: 3 additions & 3 deletions templates/webscanners/scans/vuln_details.html
View file
Expand Up @@ -36,7 +36,7 @@ <h5 class="mb-0">
<div id="collapseOne" class="collapse show" aria-labelledby="headingOne"
data-parent="#accordionExample">
<div class="card-body">
{{ data.description | safe }}
{{ data.description | striptags }}
</div>
</div>
</div>
Expand Down Expand Up @@ -126,7 +126,7 @@ <h5 class="mb-0">
<div id="collapseThree" class="collapse" aria-labelledby="headingThree"
data-parent="#accordionExample">
<div class="card-body">
{{ data.solution | safe }}
{{ data.solution | striptags }}
</div>
</div>
</div>
Expand All @@ -143,7 +143,7 @@ <h5 class="mb-0">
<div id="collapse4" class="collapse" aria-labelledby="heading4"
data-parent="#accordionExample">
<div class="card-body">
{{ data.reference | safe }}
{{ data.reference }}
</div>
</div>
</div>
Expand Down

0 comments on commit 793e948

Please sign in to comment.