Mercurial Mercurial > pub > hg > cubicweb / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
web/views/cwuser.py
changeset 10033 b3a1d15965d9
parent 9015 65b8236e1bb4
child 10609 e2d8e81bfe68 
--- a/web/views/cwuser.py	Thu Sep 25 10:50:23 2014 +0200
+++ b/web/views/cwuser.py	Thu Sep 11 15:17:08 2014 +0200
@@ -160,7 +160,8 @@
     def entity_call(self, entity, **kwargs):
         entity.complete()
         self.w(u'<a href="%s" class="%s">%s</a>' % (
-            entity.absolute_url(), entity.name, entity.printable_value('name')))
+            entity.absolute_url(), xml_escape(entity.name),
+            entity.printable_value('name')))
 
 
 # user / groups management views ###############################################
cubicweb