colin
/
bookstack
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
bookstack/resources/lang/en
History
Dan Brown 349162ea13
Prevented possible XSS via link attachments 
This filters out potentially malicious javascript: or data: uri's coming
through to be attached to attachments.
Added tests to cover.

Thanks to Yassine ABOUKIR (@yassineaboukir on twitter) for reporting this
vulnerability.
 		2020-10-31 15:01:52 +00:00
..
activities.php Created sketchy translation formatter script 2018-12-14 21:23:05 +00:00
auth.php Updated password reset process not to indicate if email exists 2020-04-10 13:38:08 +01:00
common.php Converted image-manager to be component/HTML based 2020-07-25 00:20:58 +01:00
components.php Converted image-manager to be component/HTML based 2020-07-25 00:20:58 +01:00
entities.php Added button for inserting attachment link to a page 2020-09-13 18:58:05 +01:00
errors.php Finished breakdown of attachment vue into components 2020-07-04 16:53:02 +01:00
pagination.php Cleaned up script and formatted remaining EN files 2018-12-16 13:12:13 +00:00
passwords.php Updated password reset process not to indicate if email exists 2020-04-10 13:38:08 +01:00
settings.php Merge branch 'jb-l10n-fix-czech' of git://github.com/jakubboucek/BookStack into jakubboucek-jb-l10n-fix-czech 2020-09-19 15:44:18 +01:00
validation.php Prevented possible XSS via link attachments 2020-10-31 15:01:52 +00:00