kotovalexarian-likes-github
/
sinatra
mirror of https://github.com/sinatra/sinatra
1
0
Fork 0
Code Releases Activity

Add escaping to the static 404 page.

This commit is contained in:
Chris Gavin 2020-09-28 15:17:21 +01:00
parent eebec272ce
commit 8d38b124aa
No known key found for this signature in database
GPG Key ID: 07F950B80C27E4DA
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/sinatra/base.rb
View File

@ -1168,7 +1168,7 @@ module Sinatra
if not_found? || bad_request?
if boom.message && boom.message != boom.class.name
body boom.message
body Rack::Utils.escape_html(boom.message)
else
content_type 'text/html'
body '<h1>' + (not_found? ? 'Not Found' : 'Bad Request') + '</h1>'