osr-plastic/osr-discourse-src
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2023-03-18. You can view files and clone it, but cannot push or open issues or pull requests.
a373bf2a01
osr-discourse-src/plugins
History
Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts 
Non-markdown tags weren't being escaped in chat excerpts. This could be
triggered by editing a chat message containing a tag (self XSS), or by
replying to a chat message with a tag (XSS).

Co-authored-by: Jan Cernik <jancernik12@gmail.com>
2023-03-16 15:27:09 -06:00
..
chat SECURITY: XSS on chat excerpts 2023-03-16 15:27:09 -06:00
discourse-details Update translations (#20671) 2023-03-14 15:04:54 +01:00
discourse-local-dates DEV: Support @debounce decorator in native class syntax (#20521) 2023-03-03 11:48:58 +00:00
discourse-narrative-bot Update translations (#20671) 2023-03-14 15:04:54 +01:00
discourse-presence Update translations (#20370) 2023-02-20 11:01:01 +01:00
lazy-yt FIX: lazy_yt_enabled doesn't affect the engine (#19997) 2023-01-25 12:40:57 -03:00
poll Update translations (#20671) 2023-03-14 15:04:54 +01:00
styleguide Update translations (#20671) 2023-03-14 15:04:54 +01:00