Comparing version 0.7.5 to 0.7.6
@@ -0,1 +1,4 @@ | ||
2015/05/09 Version 0.7.6 | ||
- Fix double encoding in directory listings | ||
2015/05/07 Version 0.7.5 | ||
@@ -2,0 +5,0 @@ - Fix HTML reflection vulnerability in certain error handlers |
@@ -123,5 +123,3 @@ var ecstatic = require('../ecstatic'), | ||
var isDir = file[1].isDirectory && file[1].isDirectory(); | ||
var href = encodeURI( | ||
parsed.pathname.replace(/\/$/, '') + | ||
'/' + file[0]); | ||
var href = parsed.pathname.replace(/\/$/, '') + '/' + encodeURI(file[0]); | ||
@@ -128,0 +126,0 @@ // append trailing slash and query for dir entry |
@@ -5,3 +5,3 @@ { | ||
"description": "A simple static file server middleware that works with both Express and Flatiron", | ||
"version": "0.7.5", | ||
"version": "0.7.6", | ||
"homepage": "https://github.com/jfhbrook/node-ecstatic", | ||
@@ -8,0 +8,0 @@ "repository": { |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
226577
635