Escape html characters in plain message text

2019-10-22 21:57:53 +02:00
parent 0169c0650e
commit 5892d9a2b7
1 changed files with 2 additions and 2 deletions
--- a/pyquarantine/notifications.py
+++ b/pyquarantine/notifications.py
@@ -221,8 +221,8 @@ class EMailNotification(BaseNotification):
            self.logger.debug(
                "{}: content mimetype is {}, converting to {}".format(
                    queueid, mimetype, self._html_text))
-            text = re.sub(r"^(.*)$", r"\1<br/>\n",
+            text = re.sub(r"^(.*)$", r"\1<br/>",
-                          text.decode(), flags=re.MULTILINE)
+                          escape(text.decode()), flags=re.MULTILINE)
        else:
            self.logger.debug(
                "{}: content mimetype is {}".format(