Fixed options login content injection vulnerability.

author: Mark Sapiro <mark@msapiro.net> 2020-05-05 08:08:54 -0700
committer: Mark Sapiro <mark@msapiro.net> 2020-05-05 08:08:54 -0700
commit: bb493df55fe504a0dd4f743ad48837fd18eb9888 (patch)
tree: c8f770a913249f6d32435d173c31986076317389 /Mailman
parent: 12155455f6afa9243c18077bdd064fceb428e56c (diff)
download: mailman2-bb493df55fe504a0dd4f743ad48837fd18eb9888.tar.gz
mailman2-bb493df55fe504a0dd4f743ad48837fd18eb9888.tar.xz
mailman2-bb493df55fe504a0dd4f743ad48837fd18eb9888.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/Mailman/Cgi/options.py b/Mailman/Cgi/options.py
index 641ec134..ee2293e2 100644
--- a/Mailman/Cgi/options.py
+++ b/Mailman/Cgi/options.py
@@ -173,7 +173,7 @@ def main():
     try:
         Utils.ValidateEmail(user)
     except Errors.EmailAddressError:
-        doc.addError(_('Illegal Email Address: %(safeuser)s'))
+        doc.addError(_('Illegal Email Address'))
         loginpage(mlist, doc, None, language)
         print doc.Format()
         return
author	Mark Sapiro <mark@msapiro.net>	2020-05-05 08:08:54 -0700
committer	Mark Sapiro <mark@msapiro.net>	2020-05-05 08:08:54 -0700
commit	bb493df55fe504a0dd4f743ad48837fd18eb9888 (patch)
tree	c8f770a913249f6d32435d173c31986076317389 /Mailman
parent	12155455f6afa9243c18077bdd064fceb428e56c (diff)
download	mailman2-bb493df55fe504a0dd4f743ad48837fd18eb9888.tar.gz mailman2-bb493df55fe504a0dd4f743ad48837fd18eb9888.tar.xz mailman2-bb493df55fe504a0dd4f743ad48837fd18eb9888.zip