Union/ProjectLighthouse
1
0
Fork 0
mirror of https://github.com/LBPUnion/ProjectLighthouse.git synced 2025-08-08 21:08:39 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Prevent possible XSS

Browse source
This commit is contained in:
sudokoko 2024-03-29 16:54:03 -04:00
commit 1884ffd95f
No known key found for this signature in database
GPG key ID: 248D68C664937395
1 changed files with 12 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

18
ProjectLighthouse.Servers.Website/Pages/LandingPage.cshtml
View file

@ -66,15 +66,19 @@
<div> <div>
<h3>@Model.LatestAnnouncement.Title</h3> <h3>@Model.LatestAnnouncement.Title</h3>
<div style="padding-bottom: 2em;"> <div style="padding-bottom: 2em;">
@if (Model.LatestAnnouncement.Content.Length > 250)
{
<span style="white-space: pre-line"> <span style="white-space: pre-line">
@{ @Model.LatestAnnouncement.Content[..250]
string truncatedAnnouncement = Model.LatestAnnouncement.Content.Length > 250 <a href="@ServerConfiguration.Instance.ExternalUrl/notifications">read more</a>
? Model.LatestAnnouncement.Content[..250] +
$"... <a href='{ServerConfiguration.Instance.ExternalUrl}/notifications'>read more</a>"
: Model.LatestAnnouncement.Content;
}
@Html.Raw(truncatedAnnouncement)
</span> </span>
}
else
{
<span style="white-space: pre-line">
@Model.LatestAnnouncement.Content
</span>
}
</div> </div>
@if (Model.LatestAnnouncement.Publisher != null) @if (Model.LatestAnnouncement.Publisher != null)
{ {