Mercurial > p > roundup > code

comparison roundup/cgi/wsgi_handler.py @ 5665:ab37c1705dbf maint-1.6

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Fix fix XSS issue in wsgi and cgi when handing url not found/404. issue2551035
author John Rouillard <rouilj@ieee.org>
date Fri, 22 Mar 2019 18:16:11 -0400
parents 7aa72c31464d
children
comparison
equal deleted inserted replaced
5635:ea35ab75a4c0 5665:ab37c1705dbf
64 request.translator) 64 request.translator)
65 try: 65 try:
66 client.main() 66 client.main()
67 except roundup.cgi.client.NotFound: 67 except roundup.cgi.client.NotFound:
68 request.start_response([('Content-Type', 'text/html')], 404) 68 request.start_response([('Content-Type', 'text/html')], 404)
69 request.wfile.write('Not found: %s'%client.path) 69 request.wfile.write('Not found: %s'%cgi.escape(client.path))
70 70
71 # all body data has been written using wfile 71 # all body data has been written using wfile
72 return [] 72 return []
73 73
74 def start_response(self, headers, response_code): 74 def start_response(self, headers, response_code):
Roundup Issue Tracker: http://roundup-tracker.org/