added a very dangerous, very serious vulnerability (constantize

2013-06-02 22:42:29 -04:00
parent caecb88e30
commit e97afb9bb4
9 changed files with 100 additions and 3 deletions
@@ -18,13 +18,13 @@
           <% end %>
        </li>
 		<% end %>
-        <li>
-          <a href="#">
+        <li id="benefit_forms">
+		<%= link_to user_benefit_forms_path(:user_id => current_user.user_id) do %>
            <div class="icon">
              <span class="fs1" aria-hidden="true" data-icon="&#xe05c;"></span>
            </div>
            Benefit Forms
-          </a>
+          <% end %>
        </li>
        <li>
           <%= link_to user_retirement_index_path(:user_id => current_user.user_id) do %>