github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-23 03:16:41 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
a373bf2a01
discourse/plugins
History
Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts 
Non-markdown tags weren't being escaped in chat excerpts. This could be
triggered by editing a chat message containing a tag (self XSS), or by
replying to a chat message with a tag (XSS).

Co-authored-by: Jan Cernik <jancernik12@gmail.com>
2023-03-16 15:27:09 -06:00
..
chat SECURITY: XSS on chat excerpts 2023-03-16 15:27:09 -06:00
discourse-details Update translations (#20671) 2023-03-14 15:04:54 +01:00
discourse-local-dates DEV: Support @debounce decorator in native class syntax (#20521) 2023-03-03 11:48:58 +00:00
discourse-narrative-bot Update translations (#20671) 2023-03-14 15:04:54 +01:00
discourse-presence Update translations (#20370) 2023-02-20 11:01:01 +01:00
lazy-yt FIX: lazy_yt_enabled doesn't affect the engine (#19997) 2023-01-25 12:40:57 -03:00
poll Update translations (#20671) 2023-03-14 15:04:54 +01:00
styleguide Update translations (#20671) 2023-03-14 15:04:54 +01:00