Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
Vulnerable Ruby on Rails templating
<div>
<h1>Blog post: <%= @post.title %></h1> (1)
<br />
<a href=<%= @post.url %>>Click here to see the full story</a> (2)
<script>
record_post_view(@post.id); (3)
</script>
<div id=“footer” <%= @post.footer_attr %>>&copy; 2018</div> (4)
</div>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment