use h() to avoid XSS in usernames
authorÆvar Arnfjörð Bjarmason <avarab@gmail.com>
Thu, 1 Oct 2009 20:02:54 +0000 (20:02 +0000)
committerÆvar Arnfjörð Bjarmason <avarab@gmail.com>
Thu, 1 Oct 2009 20:02:54 +0000 (20:02 +0000)
commit78e0ec74f74721a2652b7c950d0aa501363bceef
tree9c5db5747db49bc677f01b4d76525616718d9721
parente0ece007381036874d05423119f8a6cc8e934523
use h() to avoid XSS in usernames
app/views/user_blocks/edit.html.erb
app/views/user_blocks/new.html.erb