mirror of
https://github.com/discourse/discourse.git
synced 2024-12-16 00:44:16 +08:00
477bacb3ae
The XSS here is only possible if CSP is disabled. Low impact since CSP is enabled by default in SiteSettings. |
||
---|---|---|
.. | ||
adapters | ||
components | ||
controllers | ||
helpers | ||
mixins | ||
models | ||
routes | ||
services | ||
templates |