Check for XSS in select() for Rails 2
previously, this would be a weak confidence warning. Change to be the same as Rails 3 versions which had a vulnerability that caused select to not escape arguments: https://groups.google.com/d/topic/rubyonrails-security/CdoMUVpsRmQ/discussion
Showing
想要评论请 注册 或 登录