about summary refs log tree commit diff
path: root/ui-tree.c
diff options
context:
space:
mode:
authorLukas Fleischer <cgit@cryptocrack.de>2011-07-22 13:47:19 +0200
committerLars Hjemli <hjemli@gmail.com>2011-07-22 12:21:28 +0000
commitbebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5 (patch)
tree33e28db20cbae2aa513ccec38c7d4706654eed46 /ui-tree.c
parentRemove dead initialization in cgit_parse_commit() (diff)
downloadcgit-pink-bebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5.tar.gz
cgit-pink-bebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5.zip
Fix potential XSS vulnerability in rename hint
The file name displayed in the rename hint should be escaped to avoid
XSS. Note that this vulnerability is only applicable when an attacker
has gained push access to the repository.

Signed-off-by: Lukas Fleischer <cgit@cryptocrack.de>
Signed-off-by: Lars Hjemli <hjemli@gmail.com>
Diffstat (limited to 'ui-tree.c')
0 files changed, 0 insertions, 0 deletions
 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-09-12 08:25:36 +0000


 


'>2062.73June McEnroe


2021-10-15Update to OpenBSD 7.0 2062.63June McEnroe


2021-08-29Update to Linux man-pages 5.13 2062.53Štěpán Němec


2021-08-26Update to NetBSD 9.2 2062.52June McEnroe


2021-08-26Support DESTDIR in install/uninstallJune McEnroe


2021-08-26Add version number generatorJune McEnroe


2021-08-22Add ISC license headerJune McEnroe


2021-08-22Update to Linux man-pages 5.12Štěpán Němec


2021-06-21Add manuals for macOS 11.3June McEnroe


2021-05-08Update to OpenBSD 6.9June McEnroe


2021-04-26Update to Linux man-pages 5.11June McEnroe


2021-04-26Update to FreeBSD 13.0June McEnroe


2021-01-27Completely rewrite how manuals are fetched and installedJune McEnroe

Also add section 6 manuals from NetBSD and OpenBSD!



2020-12-14Update to man-pages-posix 2017-aJune McEnroe


2020-12-14Update to OpenBSD 6.8June McEnroe


2020-12-14Update to NetBSD 9.1June McEnroe


2020-12-14Update to man-pages 5.09June McEnroe


2020-12-14Update to FreeBSD 12.2June McEnroe


2020-06-08Update to OpenBSD 6.7June McEnroe


2020-05-04Add hack for macOS to search extra man sectionsJune McEnroe


2020-05-04Don't clear MANSECTJune McEnroe