fix html escaping for UTF-8 module metadata

2024-11-12 11:52:01 +01:00 · 2018-02-02 16:35:50 -06:00 · 2018-02-02 16:35:50 -06:00 · 0a3fe0c608
commit 0a3fe0c608
parent c9473f8cbc
2 changed files with 3 additions and 3 deletions
--- a/data/markdown_doc/default_template.erb
+++ b/data/markdown_doc/default_template.erb
@ -5,7 +5,7 @@

 ## Module Name

-<%= Rex::Text.html_encode(items[:mod_fullname]) %>
+<%= CGI::escapeHTML(items[:mod_fullname]) %>

 ## Authors

@ -47,4 +47,4 @@ No options required.

 ## Basic Usage

-<%= normalize_demo_output(items[:mod_demo]) %>
+<%= normalize_demo_output(items[:mod_demo]) %>
--- a/lib/msf/util/document_generator/normalizer.rb
+++ b/lib/msf/util/document_generator/normalizer.rb
@ -183,7 +183,7 @@ module Msf
        # @return [String]
        def normalize_authors(authors)
          if authors.kind_of?(Array)
-            authors.collect { |a| "* #{Rex::Text.html_encode(a)}" } * "\n"
+            authors.collect { |a| "* #{CGI::escapeHTML(a)}" } * "\n"
          else
            authors
          end