xss vulnerability in empty search results page

This commit is contained in:
Emi Matchu 2011-05-13 08:20:09 -04:00
parent c23024b43a
commit 1b3669178c

View file

@ -2,7 +2,7 @@
- title "Searching Infinite Closet for \"#{@query}\""
- if @items.empty?
:markdown
We couldn't find any wearables that matched **#{@query}**. Sorry!
We couldn't find any wearables that matched **#{h @query}**. Sorry!
Are we missing something? To add an item to our database, just
[show us a pet who is wearing it][1]. That's it!