github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-12-15 15:45:07 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
9adfccfad1
discourse/app
History
Robin Ward 9adfccfad1 FIX: Regression with escaping on badge page 
In this branch (stable) we can't run the sanitizer because the bundle is not
loaded. The long badge description is not sanitized, but it
has to be created by an admin so it's extremely low risk.

In the beta / tests-passed branches the text is sanitized.
2016-07-28 16:11:41 -04:00
..
assets FIX: Regression with escaping on badge page 2016-07-28 16:11:41 -04:00
controllers SECURITY: XSS in "Account Suspended" Messages and Badge Descriptions 2016-07-28 15:29:05 -04:00
helpers FIX: do not allow SVG image as digest logo 2016-04-02 17:27:06 +05:30
jobs FIX: ensure group's users counters are kept in sync 2016-04-04 17:03:18 +02:00
mailers merge master 2016-03-31 17:40:54 -04:00
models SECURITY: Make sure uploaded_urls have corresponding upload records 2016-07-28 15:41:03 -04:00
serializers merge master 2016-03-31 17:40:54 -04:00
services FEATURE: Two new badges - First Emoji and First Mention 2016-04-05 15:17:41 -04:00
views FIX: Digest broken anchor tag for blank/SVG logo 2016-04-02 17:45:34 +01:00