striptagged and escaped the meta keywords injection from the question template

author: Evgeny Fadeev <evgeny.fadeev@gmail.com> 2011-06-17 19:32:05 -0400
committer: Evgeny Fadeev <evgeny.fadeev@gmail.com> 2011-06-17 19:32:05 -0400
commit: 19f18a8f599eae03bf73e404ab2ed7687ac9ff24 (patch)
tree: 3d449f198da1cf4b56d517ef7736a8927c9a6b6c
parent: f721f09f9a5c69177d761019aab1700e7dd7497a (diff)
download: askbot-19f18a8f599eae03bf73e404ab2ed7687ac9ff24.tar.gz
askbot-19f18a8f599eae03bf73e404ab2ed7687ac9ff24.tar.bz2
askbot-19f18a8f599eae03bf73e404ab2ed7687ac9ff24.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/askbot/skins/default/templates/question.html b/askbot/skins/default/templates/question.html
index b9f3edc5..4114865b 100644
--- a/askbot/skins/default/templates/question.html
+++ b/askbot/skins/default/templates/question.html
@@ -3,7 +3,7 @@
 <!-- question.html -->
 {% block title %}{% spaceless %}{{ question.get_question_title() }}{% endspaceless %}{% endblock %}
 {% block meta_description %}
-        <meta name="description" content="{{question.summary}}" />
+        <meta name="description" content="{{question.summary|striptags|escape}}" />
 {% endblock %}
 {% block keywords %}{{question.tagname_meta_generator()}}{% endblock %}
 {% block forestyle %}
author	Evgeny Fadeev <evgeny.fadeev@gmail.com>	2011-06-17 19:32:05 -0400
committer	Evgeny Fadeev <evgeny.fadeev@gmail.com>	2011-06-17 19:32:05 -0400
commit	19f18a8f599eae03bf73e404ab2ed7687ac9ff24 (patch)
tree	3d449f198da1cf4b56d517ef7736a8927c9a6b6c
parent	f721f09f9a5c69177d761019aab1700e7dd7497a (diff)
download	askbot-19f18a8f599eae03bf73e404ab2ed7687ac9ff24.tar.gz askbot-19f18a8f599eae03bf73e404ab2ed7687ac9ff24.tar.bz2 askbot-19f18a8f599eae03bf73e404ab2ed7687ac9ff24.zip