Skip to content

Commit

Permalink
Sanitize params
Browse files Browse the repository at this point in the history
  • Loading branch information
@luciagirasoles
luciagirasoles committed Oct 25, 2023
1 parent db324f2 commit bb60b38
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions app/views/site/past_meetup.erb
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
<%= javascript_pack_tag 'past_meetup' %>
<%= stylesheet_pack_tag "past_meetup" %>
<%= javascript_tag do %>
var year = <%= raw(params[:year]) %>
var month = <%= raw(params[:month]) %>
var day = <%= raw(params[:day]) %>
<% end %>
var year = <%= raw(h(params[:year])) %>;
var month = <%= raw(h(params[:month])) %>;
var day = <%= raw(h(params[:day])) %>;
<% end %>

0 comments on commit bb60b38

Please sign in to comment.