Displaying 1 result from an estimated 1 matches for "076ff5f8".
Did you mean:
076ff188
2006 Jul 13
4
script injection/cross-site scripting protection
When is it possible to set <script>while(true){}</script> as the value of
project.name, what it the best way to escape the output of the following?
<td><%= project.name %></td>
Dennis Byrne
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://wrath.rubyonrails.org/pipermail/rails/attachments/20060713/bbdedb86/attachment.html