Infrastructure/forgejo
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2025-02-27 08:16:12 -05:00
Code Issues Activity
forgejo/templates/repo
History
Gusted fe2df46d05
[SECURITY] Fix XSS in dismissed review 
- It's possible for reviews to not be assiocated with users, when they
were migrated from another forge instance. In the migration code,
there's no sanitization check for author names, so they could contain
HTML tags and thus needs to be properely escaped.
- Pass `$reviewerName` trough `Escape`.
2024-02-22 15:04:36 +01:00
..
actions Fix the runs will not be displayed bug when the main branch have no workflows but other branches have (#28359) (#28365) 2023-12-08 13:41:16 +01:00
branch Rework markup link rendering (#26745) (#28803) 2024-01-16 14:41:11 +00:00
cite
code
diff [BUG] split code conversations in diff tab (#2306) 2024-02-16 14:06:43 +01:00
editor Preserve BOM in web editor (#28935) (#28959) 2024-01-31 14:18:26 +01:00
find
graph Rework markup link rendering (#26745) (#28803) 2024-01-16 14:41:11 +00:00
issue [SECURITY] Fix XSS in dismissed review 2024-02-22 15:04:36 +01:00
migrate [SECURITY] review(kn4ck3r): more template escapes 2024-02-22 12:54:34 +01:00
projects Use full width for project boards (#28225) (#28245) 2023-12-08 13:40:59 +01:00
pulls
release Hide code links on release page if user cannot read code (#29064) (#29066) 2024-02-13 14:17:43 +01:00
settings [SECURITY] review(kn4ck3r): more template escapes 2024-02-22 12:54:34 +01:00
tag
wiki [SECURITY] Fix XSS in wiki last commit information 2024-02-22 13:04:47 +01:00
activity.tmpl Render code block in activity tab (#28816) (#28818) 2024-01-31 13:35:54 +01:00
blame.tmpl
branch_dropdown.tmpl
clone_buttons.tmpl
clone_script.tmpl
commit_load_branches_and_tags.tmpl Wrap contained tags and branches again (#29021) (#29026) 2024-02-13 14:17:25 +01:00
commit_page.tmpl Rework markup link rendering (#26745) (#28803) 2024-01-16 14:41:11 +00:00
commit_status.tmpl
commit_statuses.tmpl
commits.tmpl [GITEA] Detect file rename and show in history 2023-11-13 14:06:30 +01:00
commits_list.tmpl Rework markup link rendering (#26745) (#28803) 2024-01-16 14:41:11 +00:00
commits_list_small.tmpl Rework markup link rendering (#26745) (#28803) 2024-01-16 14:41:11 +00:00
commits_table.tmpl
create.tmpl
create_helper.tmpl
empty.tmpl
file_info.tmpl
forks.tmpl
graph.tmpl
header.tmpl Refactor template empty checks (#28351) (#28354) 2023-12-08 13:41:16 +01:00
home.tmpl
icon.tmpl
packages.tmpl
release_tag_header.tmpl
search.tmpl Fix 500 error of searching commits (#28576) (#28579) 2023-12-22 12:10:04 +01:00
search_name.tmpl
shabox_badge.tmpl
sub_menu.tmpl
unicode_escape_prompt.tmpl Fix incorrect button CSS usages (#29015) (#29023) 2024-02-13 14:17:18 +01:00
upload.tmpl
user_cards.tmpl
view_file.tmpl Fix incorrect button CSS usages (#29015) (#29023) 2024-02-13 14:17:18 +01:00
view_list.tmpl Rework markup link rendering (#26745) (#28803) 2024-01-16 14:41:11 +00:00
watchers.tmpl