Case #2908: Escape user name in user not found error

author Tom Hughes <tom@compton.nu>

Wed, 21 Apr 2010 23:43:31 +0000 (00:43 +0100)

committer Tom Hughes <tom@compton.nu>

Wed, 21 Apr 2010 23:43:31 +0000 (00:43 +0100)
author Tom Hughes <tom@compton.nu>
Wed, 21 Apr 2010 23:43:31 +0000 (00:43 +0100)
committer Tom Hughes <tom@compton.nu>
Wed, 21 Apr 2010 23:43:31 +0000 (00:43 +0100)
diff --git a/app/views/user/no_such_user.html.erb b/app/views/user/no_such_user.html.erb

index 585d29d8cde56bcec4d42a7615190c270462130c..8507f5abb2b70d475089400ad99efd3fafb5a1cd 100644 (file)
--- a/app/views/user/no_such_user.html.erb
+++ b/app/views/user/no_such_user.html.erb
@@ -1,2 +1,2 @@
-<h2><%= t 'user.no_such_user.heading', :user => @not_found_user %></h2>
-<p><%= t 'user.no_such_user.body', :user => @not_found_user %></p>
+<h2><%= t 'user.no_such_user.heading', :user => h(@not_found_user) %></h2>
+<p><%= t 'user.no_such_user.body', :user => h(@not_found_user) %></p>
author	Tom Hughes <tom@compton.nu>
	Wed, 21 Apr 2010 23:43:31 +0000 (00:43 +0100)
committer	Tom Hughes <tom@compton.nu>
	Wed, 21 Apr 2010 23:43:31 +0000 (00:43 +0100)