kotovalexarian-likes-github/sinatra
1
0
Fork 0
mirror of https://github.com/sinatra/sinatra synced 2023-03-27 23:18:01 -04:00
Code Releases Activity
sinatra/lib
History
Andy Brody 26cb21542b Escape HTML in the 404 page. 
There is a reflected XSS in the development mode 404 page for clients
that don't URL-encode the request path. (I'm not aware of any major
browsers that do this, but you can see the idea with cURL.)
2014-06-11 18:41:02 -07:00
..
sinatra Escape HTML in the 404 page. 2014-06-11 18:41:02 -07:00
sinatra.rb do not modify load path 2012-01-03 18:00:18 +01:00