Ref #8 Fixed Reflected server-side cross-site scripting

Signed-off-by: Krzysztof Kaźmierczyk <kazm@ibm.com>
IBM · Oct 31, 2024 · 50f4e60 · 50f4e60
1 parent 95eeff9
commit 50f4e60
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/javacore_analyser_web.py b/javacore_analyser_web.py
@@ -70,7 +70,7 @@ def delete(path):
     report_location = os.path.normpath(os.path.join(reports_dir, path))
     if not report_location.startswith(reports_dir):
         logging.error("Deleted report in report list. Not deleting")
-        return "Cannot delete the report. The report <b>" + path + "</b> does not exist", 503
+        return "Cannot delete the report.", 503
     shutil.rmtree(report_location)
 
     return redirect("/")