Skip to content

Fix XSS caused by disabled autoescaping in the default DRF Browsable API view templates#6330

Merged
lovelydinosaur merged 3 commits into
encode:masterfrom
moneymeets:moneymeets/html-escaping
Jan 16, 2019
Merged

Fix XSS caused by disabled autoescaping in the default DRF Browsable API view templates#6330
lovelydinosaur merged 3 commits into
encode:masterfrom
moneymeets:moneymeets/html-escaping

Fix XSS in default DRF Browsable API template by re-enabling autoescape

75a4891
Select commit
Loading
Failed to load commit list.

Workflow runs completed with no jobs