forgejo/templates/repo/issue/view_content at 4fdd0ed7282406cf245c922a7962ee75f8e74486 - mirrors/forgejo - Source Garden

mirrors

/

forgejo

mirror of

History

Gusted 4fdd0ed728 [SECURITY] Fix XSS in dismissed review - It's possible for reviews to not be assiocated with users, when they were migrated from another forge instance. In the migration code, there's no sanitization check for author names, so they could contain HTML tags and thus needs to be properely escaped. - Pass `$reviewerName` trough `Escape`. (cherry picked from commit `fe2df46d05`) Conflicts: templates/repo/issue/view_content/comments.tmpl trivial context conflict		2024-02-22 22:44:22 +01:00
..
add_reaction.tmpl	Improve and fix bugs surrounding reactions (#24760 )	2023-05-28 01:34:18 +00:00
attachments.tmpl	Improve template helper functions: string/slice (#24266 )	2023-04-22 14:16:22 -04:00
comments.tmpl	[SECURITY] Fix XSS in dismissed review	2024-02-22 22:44:22 +01:00
comments_delete_time.tmpl	Fix missing yes/no in delete time log modal (#24851 )	2023-05-22 09:46:50 +00:00
context_menu.tmpl	Fix duplicated url prefix on issue context menu (#26066 ) (#26067 )	2023-07-24 07:59:10 +02:00
pull.tmpl	Use flex to align SVG and text (#25163 ) (#25260 )	2023-06-14 13:21:48 -04:00
pull_merge_instruction.tmpl	Refactor hiding-methods, remove jQuery show/hide, remove `.hide` class, remove inline style=display:none (#22950 )	2023-02-19 12:06:14 +08:00
reactions.tmpl	Improve and fix bugs surrounding reactions (#24760 )	2023-05-28 01:34:18 +00:00
reference_issue_dialog.tmpl	Group template helper functions, remove `Printf`, improve template error messages (#23982 )	2023-04-08 21:15:22 +08:00
sidebar.tmpl	Fix incorrect "tabindex" attributes (#26733 ) (#26734 )	2023-09-08 08:07:19 +02:00
update_branch_by_merge.tmpl	Use flex to align SVG and text (#25163 ) (#25260 )	2023-06-14 13:21:48 -04:00