[PATCH 2/3] ui-shared: URL-escape script_name

John Keeping john at keeping.me.uk
Sun Jan 12 23:00:01 CET 2014

On Sun, Jan 12, 2014 at 10:18:30PM +0100, Jason A. Donenfeld wrote:
> Are there any circumstances in which this could have prior lead to an XSS?

I'm pretty sure this is entirely under the control of the system
administrator, so it should be fine.

More information about the CGit mailing list