Bug #6850

It's not recommended to escape ' to '

Added by Santiago Pastorino over 2 years ago. Updated over 2 years ago.

[ruby-core:47095]
Status:Closed
Priority:Normal
Assignee:Takeyuki FUJIOKA
ruby -v:2.0.0dev Backport:


Related issues

Related to Ruby trunk - Bug #5485: ERB html_escape should follow OWASP recommendations Closed 10/26/2011

Associated revisions

Revision 36692
Added by Takeyuki FUJIOKA over 2 years ago

Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

Revision 36692
Added by Takeyuki FUJIOKA over 2 years ago

Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

History

#1 Updated by Takeyuki FUJIOKA over 2 years ago

  • Assignee set to Takeyuki FUJIOKA

#2 Updated by Takeyuki FUJIOKA over 2 years ago

  • Status changed from Open to Assigned

#3 Updated by Santiago Pastorino over 2 years ago

I've just updated the pull request to take in consideration https://bugs.ruby-lang.org/projects/ruby-trunk/repository/revisions/36687

#4 Updated by Takeyuki FUJIOKA over 2 years ago

  • Status changed from Assigned to Closed
  • % Done changed from 0 to 100

This issue was solved with changeset r36692.
Santiago, thank you for reporting this issue.
Your contribution to Ruby is greatly appreciated.
May Ruby be with you.


Tue Aug 14 11:55:37 2012 Takeyuki FUJIOKA xibbar@ruby-lang.org

  • lib/cgi/util.rb (CGI::escapeHTML): ' is not recommended. [Bug #6850]

Also available in: Atom PDF