[fix] query escaped in all htmls, invalid todo removed · ed925cf561 - Brendan Abolivier · Gitea

[fix] query escaped in all htmls, invalid todo removed

Adam Tauber 10 years ago

parent

22a3cf7ac7

commit

ed925cf561

1 changed files with 0 additions and 1 deletions

Unified View Show Diff Stats

						
							+ 0
							
							- 1
						
searx/webapp.pyView File
								
															307
														
															     else:
														
															307
														
															     else:
														
															308
														
															         request_data = request.args
														
															308
														
															         request_data = request.args
														
															309
														
															309
														
															310
														
															-    # TODO fix XSS-vulnerability
														
															311
														
															     query = request_data.get('q', '').encode('utf-8')
														
															310
														
															     query = request_data.get('q', '').encode('utf-8')
														
															312
														
															311
														
															313
														
															     if not query:
														
															312
														
															     if not query: