Changeset 1300

Show
Ignore:
Timestamp:
01/14/08 09:38:36 (9 months ago)
Author:
iv..@gweezlebur.com
Message:

HTML escape error string (Closes #445) Thanks cvonkleist

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/app_generators/merb/templates/app/views/exceptions/internal_server_error.html.erb

    r1235 r1300  
    132132                        <h1><%= @exception.name.humanize %> <sup class="error_<%= @exception.class::STATUS %>"><%= @exception.class::STATUS %></sup></h1> 
    133133                        <% if show_details = ::Merb::Config[:exception_details] -%> 
    134                                 <h2><%= @exception.message %></h2> 
     134                                <h2><%= ERB::Util.html_escape @exception.message %></h2> 
    135135                        <% else -%> 
    136136                                <h2>Sorry about that...</h2>