mirror of
1
Fork 0
forgejo/templates
Gusted ca798e4cc2
[SECURITY] Test XSS in dismissed review
It's possible for reviews to not be assiocated with users, when they
were migrated from another forge instance. In the migration code,
there's no sanitization check for author names, so they could contain
HTML tags and thus needs to be properely escaped.
2024-02-22 15:33:20 +01:00
..
admin Convert visibility to number (#29226) 2024-02-19 22:58:33 +01:00
api/packages/pypi Remove incorrect HTML self close tag (#23748) 2023-03-27 18:05:51 +02:00
base Remove DataRaceCheck (#29258) 2024-02-19 22:58:33 +01:00
code Fix 500 error of searching commits (#28576) 2023-12-21 23:09:14 +00:00
custom [FEAT] Repository flags 2024-02-05 16:09:42 +01:00
devtest Improve CSS helper naming (#28769) 2024-01-12 20:28:01 +08:00
explore Add support for sha256 repositories (#23894) 2024-01-19 17:05:02 +01:00
mail Refactor locale&string&template related code (#29165) 2024-02-16 15:20:52 +01:00
org Use "Safe" modifier for manually constructed safe HTML strings in templates (#29227) 2024-02-19 22:58:32 +01:00
package Merge branch 'rebase-forgejo-dependency' into wip-forgejo 2024-02-05 18:58:23 +01:00
projects Use full width for project boards (#28225) 2023-11-27 17:43:52 +00:00
repo [SECURITY] Test XSS in dismissed review 2024-02-22 15:33:20 +01:00
shared Refactor more code in templates (#29236) 2024-02-19 22:58:32 +01:00
status [GITEA] Improve 404 screen on mobile 2024-02-05 16:09:42 +01:00
swagger Refactor more code in templates (#29236) 2024-02-19 22:58:32 +01:00
user Refactor more code in templates (#29236) 2024-02-19 22:58:32 +01:00
webhook Change webhook-type in create-view (#29114) 2024-02-17 23:24:30 +01:00
home.tmpl Fix more "locale" usages (#27259) 2023-09-25 20:42:40 +08:00
install.tmpl Merge branch 'rebase-forgejo-branding' into wip-forgejo 2024-02-05 18:58:18 +01:00
post-install.tmpl [BRANDING] Custom loading animation for Forgejo 2024-02-05 16:02:13 +01:00