discourse

mirror of https://github.com/discourse/discourse.git synced 2024-11-25 05:47:31 +08:00

History

Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts Non-markdown tags weren't being escaped in chat excerpts. This could be triggered by editing a chat message containing a tag (self XSS), or by replying to a chat message with a tag (XSS). Co-authored-by: Jan Cernik <jancernik12@gmail.com>		2023-03-16 15:27:09 -06:00
..
components	DEV: Unsilence and resolve setting-on-hash deprecation (#20611 )	2023-03-09 13:44:31 +00:00
mixins	Add replaceContent selectKit modifier (#18569 )	2022-10-12 13:38:42 -05:00
templates/components	SECURITY: XSS on chat excerpts	2023-03-16 15:27:09 -06:00
.gitkeep	Revert "Revert "Merge branch 'master' of https://github.com/discourse/discourse ""	2020-05-23 00:56:13 -04:00