osr-plastic/osr-discourse-src
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2023-03-18. You can view files and clone it, but cannot push or open issues or pull requests.
dev/simplify-chat-notifier
osr-discourse-src/app/assets/javascripts/discourse/tests/integration/helpers
History
Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts 
Non-markdown tags weren't being escaped in chat excerpts. This could be
triggered by editing a chat message containing a tag (self XSS), or by
replying to a chat message with a tag (XSS).

Co-authored-by: Jan Cernik <jancernik12@gmail.com>
2023-03-16 15:27:09 -06:00
..
concat-class-test.js DEV: introduces {{concat-class}} helper (#17526) 2022-07-16 14:09:54 +02:00
emoji-test.js DEV: emoji helper: add the ability to set custom title (#17517) 2022-07-18 21:51:19 +04:00
replace-emoji-test.js SECURITY: XSS on chat excerpts 2023-03-16 15:27:09 -06:00