From c26d0924bf37d565c447ddf48e024728b3b7f4fb Mon Sep 17 00:00:00 2001
From: CodeKevin <kevin@codekevin.com>
Date: Sun, 15 Mar 2015 14:44:47 -0400
Subject: [PATCH] Fixing XSS issue for users

---
 templates/teams.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/templates/teams.html b/templates/teams.html
index 37d589ad..8bd80fd2 100644
--- a/templates/teams.html
+++ b/templates/teams.html
@@ -18,7 +18,7 @@
         {% for team in teams %}
             <tr>
                 <td><a href="/team/{{ team.id }}">{{ team.name }}</a></td>
-                <td><a href="{{ team.website }}">{% if team.website %}{{ team.website }}{% endif %}</a></td>
+                <td>{% if team.website and team.website.startswith('http') %}<a href="{{ team.website }}">{{ team.website }}</a>{% endif %}</td>
                 <td><span>{% if team.affiliation %}{{ team.affiliation }}{% endif %}</span></td>
                 <td><span>{% if team.country %}{{ team.country }}{% endif %}</span></td>
             </tr>