discourse

mirror of https://github.com/discourse/discourse.git synced 2025-02-08 12:24:55 +00:00

History

Blake Erickson a373bf2a01 SECURITY: XSS on chat excerpts

Non-markdown tags weren't being escaped in chat excerpts. This could be
triggered by editing a chat message containing a tag (self XSS), or by
replying to a chat message with a tag (XSS).

Co-authored-by: Jan Cernik <jancernik12@gmail.com>

2023-03-16 15:27:09 -06:00

category-drop

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

color-palettes

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

combo-box

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

dropdown-select-box

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

future-date-input-selector

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

mini-tag-chooser

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

multi-select

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

notifications-filter

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

period-chooser

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

select-kit

DEV: Correct hbs prettier violations

2023-02-02 13:03:11 +00:00

tag-drop

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

toolbar-popup-menu-options

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

user-chooser

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

category-row.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

create-color-row.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

email-group-user-chooser-row.hbs

DEV: Correct hbs prettier violations

2023-02-02 13:03:11 +00:00

flair-row.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

multi-select.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

pinned-button.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

selected-choice-category.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

selected-choice.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

selected-name.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

single-select.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

tag-chooser-row.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

tag-row.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

topic-notifications-button.hbs

DEV: Apply prettier to hbs files

2022-12-28 13:11:12 +00:00

topic-row.hbs

SECURITY: XSS on chat excerpts

2023-03-16 15:27:09 -06:00