From b3d5a7e17180ad1d51734a5c6cb704e786b23ec8 Mon Sep 17 00:00:00 2001
From: Jeremy Zhang <jkzhang@uw.edu>
Date: Wed, 9 Aug 2017 06:58:28 +0000
Subject: [PATCH] Escape user css in the dashboard. Should fix if brackets show
 up in the css code

---
 webapp/titanembeds/templates/usercss.html.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/webapp/titanembeds/templates/usercss.html.j2 b/webapp/titanembeds/templates/usercss.html.j2
index 165c4bf..625abed 100644
--- a/webapp/titanembeds/templates/usercss.html.j2
+++ b/webapp/titanembeds/templates/usercss.html.j2
@@ -34,7 +34,7 @@ will have CSS cosmetic privilages removed, if caught. Please don't, we check the
     <div class="col s12">
         <p class="flow-text">Edit your CSS code here</p>
         <div style="position: relative; height: 40vh;">
-            <div id="css_editor">{% if new %}/* Enter your CSS code here! */{% else %}{{ css.css }}{% endif %}</div>
+            <div id="css_editor">{% if new %}/* Enter your CSS code here! */{% else %}{{ css.css|e }}{% endif %}</div>
         </div>
         <br>
     </div>