#10912: Autoescaping variable input in template tags
--------------------------------------+-------------------------------------
Reporter: andrewbadr | Owner: andrewbadr
Status: new | Milestone:
Component: Template system | Version: 1.0
Resolution: | Keywords:
Stage: Accepted | Has_patch: 1
Needs_docs: 0 | Needs_tests: 0
Needs_better_patch: 1 |
--------------------------------------+-------------------------------------
Comment (by krystal):
Just to mention that I just discovered a flaw on my website due to this
non-escaping-feature when using firstof tags ; It should really be at
least explicitly documented so people get aware of this while reading the
firstof (or cycle) doc.
A little paragraph with a one line example should be nice until a good way
to do is found.
--
Ticket URL: <http://code.djangoproject.com/ticket/10912#comment:3>
Django <http://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---
