From e4e38ef99ec8c747dfe2cf60b60b6271301a3244 Mon Sep 17 00:00:00 2001
From: bwarsaw <>
Date: Sat, 13 Dec 2003 16:27:42 +0000
Subject: handleForm(): Close some cross-site scripting holes found by Dirk
 Mueller.

---
 Mailman/Gui/Topics.py | 1 +
 1 file changed, 1 insertion(+)

(limited to 'Mailman/Gui/Topics.py')

diff --git a/Mailman/Gui/Topics.py b/Mailman/Gui/Topics.py
index 5f6de8d8..76bfd1e4 100644
--- a/Mailman/Gui/Topics.py
+++ b/Mailman/Gui/Topics.py
@@ -120,6 +120,7 @@ class Topics(GUIBase):
                 a pattern.  Incomplete topics will be ignored."""))
                 continue
             # Make sure the pattern was a legal regular expression
+            name = Utils.websafe(name)
             try:
                 re.compile(pattern)
             except (re.error, TypeError):
-- 
cgit v1.2.3