티스토리 수익 글 보기

티스토리 수익 글 보기

Backport [7521] to 0.91-bugfixes per security policy; announcement an… · django/django@6e657e2 · GitHub
Skip to content

Commit 6e657e2

Browse files
author
James Bennett
committed
Backport [7521] to 0.91-bugfixes per security policy; announcement and security bugfix release will be forthcoming.
git-svn-id: http://code.djangoproject.com/svn/django/branches/0.91-bugfixes@7529 bcc190cf-cafb-0310-a4f2-bffc1f526a37
1 parent 2c03839 commit 6e657e2

File tree

1 file changed

+2
1
lines changed

1 file changed

+2
1
lines changed

django/contrib/admin/views/decorators.py

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,7 @@
22
from django.conf.settings import SECRET_KEY
33
from django.models.auth import users
44
from django.utils import httpwrappers
5+
from django.utils.html import escape
56
from django.utils.translation import gettext_lazy
67
import base64, datetime, md5
78
import cPickle as pickle
@@ -21,7 +22,7 @@ def _display_login_form(request, error_message=''):
2122
post_data = _encode_post_data({})
2223
return render_to_response('admin/login', {
2324
'title': _('Log in'),
24-
'app_path': request.path,
25+
'app_path': escape(request.path),
2526
'post_data': post_data,
2627
'error_message': error_message
2728
}, context_instance=DjangoContext(request))

0 commit comments

Comments
 (0)