Fix cvss links in admin interface

author Magnus Hagander <magnus@hagander.net>

Tue, 25 Aug 2020 11:22:05 +0000 (13:22 +0200)

committer Magnus Hagander <magnus@hagander.net>

Tue, 25 Aug 2020 11:23:56 +0000 (13:23 +0200)
author Magnus Hagander <magnus@hagander.net>
Tue, 25 Aug 2020 11:22:05 +0000 (13:22 +0200)
committer Magnus Hagander <magnus@hagander.net>
Tue, 25 Aug 2020 11:23:56 +0000 (13:23 +0200)
diff --git a/pgweb/security/admin.py b/pgweb/security/admin.py

index 0d94f6e0cad2affb5f68ed1c9127f09f305007d5..d045e3a8bc25568706644172175f19262b1d714f 100644 (file)
--- a/pgweb/security/admin.py
+++ b/pgweb/security/admin.py
@@ -1,6 +1,7 @@
  from django.contrib import admin
  from django import forms
  from django.conf import settings
+from django.utils.safestring import mark_safe
  
  from pgweb.core.models import Version
  from pgweb.news.models import NewsArticle
@@ -48,7 +49,7 @@ class SecurityPatchAdmin(admin.ModelAdmin):
      def cvssvector(self, obj):
          if not obj.cvssvector:
              return ''
-        return '<a href="https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector={0}">{0}</a>'.format(
+        return mark_safe('<a href="https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector={0}">{0}</a>'.format)(
              obj.cvssvector)
      cvssvector.allow_tags = True
      cvssvector.short_description = "CVSS vector link"
author	Magnus Hagander <magnus@hagander.net>
	Tue, 25 Aug 2020 11:22:05 +0000 (13:22 +0200)
committer	Magnus Hagander <magnus@hagander.net>
	Tue, 25 Aug 2020 11:23:56 +0000 (13:23 +0200)