Merge pull request #2257 from Solirs/fix_bad_escape

re.escape() the query in highlight_content to prevent a server side error.
2024-07-02 15:30:42 +02:00 · 2023-03-17 08:54:54 +01:00 · 2023-03-17 08:54:54 +01:00 · 677903c355
commit 677903c355
parent 0e1010988d fbb0e9d275
1 changed files with 3 additions and 1 deletions
--- a/searx/webutils.py
+++ b/searx/webutils.py
@ -174,7 +174,9 @@ def highlight_content(content, query):
            queries.extend(re.findall(regex_highlight_cjk(qs), content, flags=re.I | re.U))
    if len(queries) > 0:
        for q in set(queries):
-            content = re.sub(regex_highlight_cjk(q), f'<span class="highlight">{q}</span>', content)
+            content = re.sub(
+                regex_highlight_cjk(q), f'<span class="highlight">{q}</span>'.replace('\\', r'\\'), content
+            )
    return content