mirror of
https://github.com/BookStackApp/BookStack.git
synced 2024-11-28 03:33:37 +08:00
349162ea13
This filters out potentially malicious javascript: or data: uri's coming through to be attached to attachments. Added tests to cover. Thanks to Yassine ABOUKIR (@yassineaboukir on twitter) for reporting this vulnerability. |
||
---|---|---|
.. | ||
AppServiceProvider.php | ||
AuthServiceProvider.php | ||
BroadcastServiceProvider.php | ||
CustomFacadeProvider.php | ||
EventServiceProvider.php | ||
PaginationServiceProvider.php | ||
RouteServiceProvider.php | ||
TranslationServiceProvider.php |