0
0
Fork 0
mirror of https://github.com/go-gitea/gitea synced 2024-12-22 14:04:19 +01:00
gitea/web_src
Gusted d8a8961b99
Sanitize user-input on file name (#17666)
* Sanitize user-input on file name

- Sanitize user-input before it get passed into the DOM.
- Prevent things like "<iframe onload=alert(1)></iframe>" from being
executed. This isn't a XSS attack as the server seems to be santizing
the path as well.

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
2021-11-17 18:08:25 +00:00
..
fomantic Disable Fomantic's CSS tooltips (#16974) 2021-09-08 07:23:46 +01:00
js Sanitize user-input on file name (#17666) 2021-11-17 18:08:25 +00:00
less Add copy button to markdown code blocks (#17638) 2021-11-16 16:16:05 +08:00
svg Fix GitBucket icon (#17644) 2021-11-16 12:24:22 +08:00