35328be26b
Modify the template producing HTML error responses to correctly escape all strings that are possibly coming from the client making the request. Before this change, the error responses were vulnerable to XSS (cross-site scripting) attacks. |
||
---|---|---|
.. | ||
handler.test.js |