]> gitweb.ps.run Git - ps-cgit/commit
projects / ps-cgit / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1e25ac5) | patch
Fix potential XSS vulnerability in rename hint
authorLukas Fleischer <cgit@cryptocrack.de>
Fri, 22 Jul 2011 11:47:19 +0000 (13:47 +0200)
committerLars Hjemli <hjemli@gmail.com>
Fri, 22 Jul 2011 12:21:28 +0000 (12:21 +0000)
commitbebe89d7c11a92bf206bf6e528c51ffa8ecbc0d5
tree33e28db20cbae2aa513ccec38c7d4706654eed46tree | snapshot
parent1e25ac5b8fe0ca8760b2786b20d36013a6197e02commit | diff
Fix potential XSS vulnerability in rename hint

The file name displayed in the rename hint should be escaped to avoid
XSS. Note that this vulnerability is only applicable when an attacker
has gained push access to the repository.

Signed-off-by: Lukas Fleischer <cgit@cryptocrack.de>
Signed-off-by: Lars Hjemli <hjemli@gmail.com>
ui-diff.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.