zydronium/neocities
1
0
Fork 0
mirror of https://github.com/neocities/neocities.git synced 2025-04-24 17:22:35 +02:00
Code Issues Projects Releases Packages Wiki Activity

fix for badly behaved browser extension injecting html into user's sites

Browse source
This commit is contained in:
Kyle Drake 2024-03-21 13:26:13 -05:00
parent 34ca68f1ae
commit 47bc9788ef
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
views/site_files/text_editor.erb
View file

@ -134,8 +134,8 @@
return
var formData = new FormData();
var fileContent = new Blob([editor.getValue()], { type: 'text/html' });
formData.append('<%= escape_javascript @filename %>', fileContent, '<%= escape_javascript @filename %>');
var fileContent = editor.getValue();
formData.append('<%= escape_javascript @filename %>', new File([fileContent], '<%= escape_javascript @filename %>', { type: 'text/html' }));
formData.append('csrf_token', '<%= escape_javascript csrf_token %>');
formData.append('username', '<%= escape_javascript current_site.username %>');