osr-plastic/osr-discourse-src
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2023-03-18. You can view files and clone it, but cannot push or open issues or pull requests.
3663ef6394
osr-discourse-src/app
History
Guo Xiang Tan 477bacb3ae SECURITY: XSS when displaying watched words in admin panel. 
The XSS here is only possible if CSP is disabled. Low impact since CSP
is enabled by default in SiteSettings.
2019-07-15 10:58:52 +08:00
..
assets SECURITY: XSS when displaying watched words in admin panel. 2019-07-15 10:58:52 +08:00
controllers DEV: Respond with error 400 to uploads requested via XHR 2019-06-27 11:30:05 +02:00
helpers replace subfolder on cdn url conversion between general cdn and s3 (#7764) 2019-06-17 11:51:17 -07:00
jobs FIX: Don't send notification email when user isn't allowed to see topic 2019-07-02 09:05:36 +10:00
mailers SECURITY: Strip HTML from invite emails 2019-07-05 14:58:46 -04:00
models SECURITY: SQL injection with default categories 2019-07-11 13:53:12 -04:00
serializers FIX: In reply to would sometimes have a broken link 2019-06-10 11:33:10 -04:00
services FIX: iterate when clearing watched words cache 2019-07-04 08:59:01 -07:00
views SECURITY: Add confirmation screen when logging in via email link 2019-06-17 18:20:48 +01:00