lib/rcov/templates/detail.html.erb in relevance-rcov-0.8.3.6 vs lib/rcov/templates/detail.html.erb in relevance-rcov-0.8.3.8
- old
+ new
@@ -65,10 +65,10 @@
</tr>
<% fileinfo.num_lines.times do |i| %>
<% line = fileinfo.lines[i].chomp %>
<% count = fileinfo.counts[i] %>
<tr class="<%= line_css(i) %>">
- <td colspan="5"><pre><a name="line<%= i.next %>"></a><%= i.next %> <%= line %></pre></td>
+ <td colspan="5"><pre><a name="line<%= i.next %>"></a><%= i.next %> <%= CGI::escapeHTML(line) %></pre></td>
</tr>
<% end %>
</tbody>
</table>
<hr/>