Janusec
diff --git a/‎gateway/waf_captcha.go‎
Lines changed: 2 additions & 1 deletion b/‎gateway/waf_captcha.go‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎static/janusec-admin/assets/images/favicon.ico‎
1.58 KB b/‎static/janusec-admin/assets/images/favicon.ico‎
1.58 KB
diff --git a/‎static/janusec-admin/assets/images/gateway2.png‎
-72 KB b/‎static/janusec-admin/assets/images/gateway2.png‎
-72 KB
diff --git a/‎static/janusec-admin/assets/images/logo.png‎
-965 Bytes b/‎static/janusec-admin/assets/images/logo.png‎
-965 Bytes
diff --git a/‎static/janusec-admin/favicon.ico‎
1.58 KB b/‎static/janusec-admin/favicon.ico‎
1.58 KB
diff --git a/‎static/janusec-admin/index.html‎
Lines changed: 6 additions & 3 deletions b/‎static/janusec-admin/index.html‎
Lines changed: 6 additions & 3 deletions
diff --git a/‎…dmin/main-es2015.3d249a116c0e53e1af34.js‎ ‎…dmin/main-es2015.9b510fd27c80e2436f66.js‎static/janusec-admin/main-es2015.3d249a116c0e53e1af34.js renamed to static/janusec-admin/main-es2015.9b510fd27c80e2436f66.js
Lines changed: 1 addition & 1 deletion b/‎…dmin/main-es2015.3d249a116c0e53e1af34.js‎ ‎…dmin/main-es2015.9b510fd27c80e2436f66.js‎static/janusec-admin/main-es2015.3d249a116c0e53e1af34.js renamed to static/janusec-admin/main-es2015.9b510fd27c80e2436f66.js
Lines changed: 1 addition & 1 deletion
diff --git a/‎…c-admin/main-es5.3d249a116c0e53e1af34.js‎ ‎…c-admin/main-es5.9b510fd27c80e2436f66.js‎static/janusec-admin/main-es5.3d249a116c0e53e1af34.js renamed to static/janusec-admin/main-es5.9b510fd27c80e2436f66.js
Lines changed: 1 addition & 1 deletion b/‎…c-admin/main-es5.3d249a116c0e53e1af34.js‎ ‎…c-admin/main-es5.9b510fd27c80e2436f66.js‎static/janusec-admin/main-es5.3d249a116c0e53e1af34.js renamed to static/janusec-admin/main-es5.9b510fd27c80e2436f66.js
Lines changed: 1 addition & 1 deletion
@@ -8,6 +8,7 @@
 package gateway
 
 import (
+	"html"
 	"net/http"
 	"sync"
 	"text/template"
@@ -32,7 +33,7 @@ const (
 // ShowCaptchaHandlerFunc ...
 func ShowCaptchaHandlerFunc(w http.ResponseWriter, r *http.Request) {
 	go ClearExpiredCapthchaHitInfo()
-	id := r.FormValue("id")
+	id := html.EscapeString(r.FormValue("id"))
 	captchaContext := models.CaptchaContext{CaptchaId: captcha.New(), ClientID: id}
 	if err := formTemplate.Execute(w, &captchaContext); err != nil {
 		http.Error(w, err.Error(), http.StatusInternalServerError)
 
@@ -1,14 +1,17 @@
 <!doctype html>
 <html lang="en">
+
 <head><base href="/janusec-admin/">
   <meta charset="utf-8">
-  <title>JANUSEC</title>
+  <title>Janusec Application Gateway</title>
   <meta name="viewport" content="width=device-width, initial-scale=1">
   <meta http-equiv="Content-Security-Policy" content="img-src 'self' data:;" />
   <link href="/janusec-admin/assets/material-icons/material-icons.css" rel="stylesheet">
   <link rel="icon" type="image/x-icon" href="favicon.ico">
 <link rel="stylesheet" href="/janusec-admin/styles.5b315bea3caf382abdf2.css"></head>
+
 <body>
   <app-root></app-root>
- <script src="/janusec-admin/runtime-es2015.871528d607deca2f7955.js" type="module"></script><script src="/janusec-admin/runtime-es5.871528d607deca2f7955.js" nomodule defer></script><script src="/janusec-admin/polyfills-es5.aa2ca4297f425c58cd1c.js" nomodule defer></script><script src="/janusec-admin/polyfills-es2015.bf3b0982128d918baf6a.js" type="module"></script><script src="/janusec-admin/main-es2015.3d249a116c0e53e1af34.js" type="module"></script><script src="/janusec-admin/main-es5.3d249a116c0e53e1af34.js" nomodule defer></script></body>
-</html>
+<script src="/janusec-admin/runtime-es2015.871528d607deca2f7955.js" type="module"></script><script src="/janusec-admin/runtime-es5.871528d607deca2f7955.js" nomodule defer></script><script src="/janusec-admin/polyfills-es5.aa2ca4297f425c58cd1c.js" nomodule defer></script><script src="/janusec-admin/polyfills-es2015.bf3b0982128d918baf6a.js" type="module"></script><script src="/janusec-admin/main-es2015.9b510fd27c80e2436f66.js" type="module"></script><script src="/janusec-admin/main-es5.9b510fd27c80e2436f66.js" nomodule defer></script></body>
+
+</html>