github/lina
1
0
Fork 0
mirror of https://github.com/jumpserver/lina.git synced 2025-09-18 16:32:28 +00:00
Code Issues Projects Releases Wiki Activity

fix: xss处理后无class属性

Browse Source
This commit is contained in:
wangruidong
2024-04-11 15:47:26 +08:00
committed by w940853815
parent f409abbf79
commit 1dfdfe3932
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/utils/xss.js
View File

@@ -18,6 +18,7 @@ const options = {
if (['src', 'href'].indexOf(name) !== -1) {
return name + '=' + value.replace('javascript:', 'java:').replace('data:', 'dt:')
}
return name + '="' + xss.escapeAttrValue(value) + '"'
}
}
const filter = new xss.FilterXSS(options)