external/aurweb
0
0
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/aurweb.git synced 2025-02-03 10:43:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
aurweb/web/html
History
Lukas Fleischer e2fa5ea6fa login.php: Escape quotes in the referer field 
Replace special characters in the referer GET parameter using
htmlspecialchars() before inserting it into the login form fields to
prevent from XSS attacks.

Fixes FS#55286.

Signed-off-by: Lukas Fleischer <lfleischer@archlinux.org>
2017-11-05 11:28:11 +01:00
..
css Use JavaScript to collapse long comments 2017-04-20 07:03:54 +02:00
images Remove 'new' tag from updates table 2016-01-31 20:12:56 +01:00
js Use minified typeahead JS from archweb 2013-03-26 00:54:18 +01:00
404.php 404.php: Squelch warning on empty PATH_INFO 2017-02-27 18:20:00 +01:00
503.php Implement a maintenance mode 2015-06-11 14:32:21 +02:00
account.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
addvote.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
comaintainers.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
commentedit.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
home.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
index.php index.php: Remove routes for dropped images 2017-03-04 13:20:37 +01:00
login.php login.php: Escape quotes in the referer field 2017-11-05 11:28:11 +01:00
logout.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
packages.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
passreset.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgbase.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgdel.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgdisown.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgflag.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgflagcomment.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgmerge.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
pkgreq.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
register.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
rpc.php rpc.php: Display generated documentation 2015-10-04 11:40:38 +02:00
rss.php Remove old logos 2015-12-13 10:22:59 +01:00
tos.php Add support for Terms of Service documents 2017-04-30 16:47:13 +02:00
tu.php Call check_sid() from a central location 2017-04-27 09:22:53 +02:00
voters.php Add user set timezones 2017-01-20 23:20:40 +01:00