Project

General

Profile

Bug #6850

It's not recommended to escape ' to '

Added by spastorino (Santiago Pastorino) almost 5 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
Normal
Target version:
[ruby-core:47095]


Related issues

Related to Ruby trunk - Bug #5485: ERB html_escape should follow OWASP recommendations Closed 10/26/2011

Associated revisions

Revision 36692
Added by xibbar (Takeyuki FUJIOKA) almost 5 years ago

Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

Revision 36692
Added by xibbar (Takeyuki FUJIOKA) almost 5 years ago

Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

Revision 36692
Added by xibbar (Takeyuki FUJIOKA) almost 5 years ago

Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

Revision 36692
Added by xibbar (Takeyuki FUJIOKA) almost 5 years ago

Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

History

#1 [ruby-core:47099] Updated by xibbar (Takeyuki FUJIOKA) almost 5 years ago

  • Assignee set to xibbar (Takeyuki FUJIOKA)

#2 [ruby-core:47100] Updated by xibbar (Takeyuki FUJIOKA) almost 5 years ago

  • Status changed from Open to Assigned

#4 Updated by xibbar (Takeyuki FUJIOKA) almost 5 years ago

  • Status changed from Assigned to Closed
  • % Done changed from 0 to 100

This issue was solved with changeset r36692.
Santiago, thank you for reporting this issue.
Your contribution to Ruby is greatly appreciated.
May Ruby be with you.


Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

Also available in: Atom PDF