diff options
| author | Markus Heiser <markus.heiser@darmarIT.de> | 2021-11-27 09:24:58 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-11-27 09:24:58 +0100 |
| commit | f0db33e14b5b443eedc25f5aeba6cd330476c851 (patch) | |
| tree | 3c37eca78f9e310bc276d488482a9ded97290e04 | |
| parent | e27b1ac57a7edf3d11c825ba8ad9798a2d56e281 (diff) | |
| parent | 9a3253fc168281566d53a5c44ba05e5ffa2b4f47 (diff) | |
Merge pull request #555 from return42/fix-autocomplete
[fix] route /autocompleter: escape '<' and '>' in the response
| -rwxr-xr-x | searx/webapp.py | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/searx/webapp.py b/searx/webapp.py index 94d421eb0..613849dc4 100755 --- a/searx/webapp.py +++ b/searx/webapp.py @@ -916,6 +916,7 @@ def autocompleter(): suggestions = json.dumps([sug_prefix, results]) mimetype = 'application/x-suggestions+json' + suggestions = escape(suggestions, False) return Response(suggestions, mimetype=mimetype) |