Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security: prevent XSS attach on wiki page #952

Merged
merged 1 commit into from
Feb 16, 2017
Merged

Security: prevent XSS attach on wiki page #952

merged 1 commit into from
Feb 16, 2017

Conversation

lunny
Copy link
Member

@lunny lunny commented Feb 16, 2017

Reported by Miguel Ángel Jimeno.

@unknwon @lunny
Security: prevent XSS attach on wiki page
93ea5dc 
Reported by Miguel Ángel Jimeno.
@lunny lunny added backport/v1.0 type/bug topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! labels Feb 16, 2017
@lunny lunny added this to the 1.1.0 milestone Feb 16, 2017
@appleboy
Copy link
Member

LGTM

@tboerger tboerger added the lgtm/need 1 This PR needs approval from one additional maintainer to be merged. label Feb 16, 2017
@bkcsoft
Copy link
Member

bkcsoft commented Feb 16, 2017

LGTM

@tboerger tboerger added lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. and removed lgtm/need 1 This PR needs approval from one additional maintainer to be merged. labels Feb 16, 2017
@bkcsoft bkcsoft merged commit 134f3e6 into go-gitea:master Feb 16, 2017
@lunny lunny mentioned this pull request Feb 16, 2017
Merged
@lunny lunny added the backport/done All backports for this PR have been created label Feb 16, 2017
@lunny lunny deleted the lunny/fix_XSS_on_wiki branch February 16, 2017 09:31
@go-gitea go-gitea locked and limited conversation to collaborators Nov 23, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@appleboy appleboy appleboy approved these changes

Assignees
No one assigned
Labels
backport/done All backports for this PR have been created lgtm/done This PR has enough approvals to get merged. There are no important open reservations anymore. topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/bug
Projects
None yet
Milestone
1.1.0
Development

Successfully merging this pull request may close these issues.
5 participants
@lunny @appleboy @bkcsoft @tboerger @unknwon