We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 27ee99c commit 0ffb73aCopy full SHA for 0ffb73a
website/templates/report.html
@@ -407,7 +407,7 @@ <h2 class="text-2xl font-semibold leading-7 text-gray-900">
407
let fileDiv = $("<div>").addClass("w-full md:w-[300px] h-[180px] overflow-hidden rounded-lg").attr("onclick", `previewFile('${safeName}')`);
408
let titleDiv = $("<div>").addClass("w-full h-10 flex justify-center rounded-t-lg p-2 bg-gray-500");
409
let titleP = $("<p>").addClass("text-xl text-white font-bold").text(safeNameDisplay);
410
- let img = $("<img>").addClass("object-cover").attr("src", src);
+ let img = $("<img>").addClass("object-cover").attr("src", escapeHtml(src));
411
412
titleDiv.append(titleP);
413
fileDiv.append(titleDiv).append(img);
0 commit comments