diff options
| author | Adam Tauber <asciimoo@gmail.com> | 2016-12-04 23:07:46 +0100 |
|---|---|---|
| committer | Adam Tauber <asciimoo@gmail.com> | 2016-12-04 23:07:46 +0100 |
| commit | 28f12ef5a0917b8cefddb4d5f74c9aaeb945355f (patch) | |
| tree | e99ad35b5a2464709a5931c4a936b1a71c995922 /searx/templates/pix-art | |
| parent | 7986d4cf4192df645fc29fe6df12607bb6949bd9 (diff) | |
[fix] proper escaping of the search query in templates
Diffstat (limited to 'searx/templates/pix-art')
| -rw-r--r-- | searx/templates/pix-art/results.html | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/searx/templates/pix-art/results.html b/searx/templates/pix-art/results.html index f7d0e209b..8999e0513 100644 --- a/searx/templates/pix-art/results.html +++ b/searx/templates/pix-art/results.html @@ -5,7 +5,7 @@ {% endfor %} {% else %} {% extends "pix-art/base.html" %} -{% block title %}{{ q }} - {% endblock %} +{% block title %}{{ q|e }} - {% endblock %} {% block meta %}{% endblock %} {% block content %} <div id="logo"><a href="./"><img src="{{ url_for('static', filename='img/searx-pixel-small.png') }}" alt="searx Logo"/></a></div> @@ -25,8 +25,8 @@ </span> <div id="pagination"> <br /> - <input type="button" onclick="load_more('{{ q }}', {{ pageno+1 }})" id="load_more" value="{{ _('Load more...') }}" /> + <input type="button" onclick="load_more('{{ q|e }}', {{ pageno+1 }})" id="load_more" value="{{ _('Load more...') }}" /> </div> </div> {% endblock %} -{% endif %}
\ No newline at end of file +{% endif %} |