external/aurweb
0
0
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/aurweb.git synced 2025-02-03 10:43:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
aurweb/web/template
History
Lukas Fleischer 19789c3f75 Escape all output strings in the header and footer 
Escape each output string using htmlspecialchars(). These aren't
exploitable; it's still better to escape them properly.

Signed-off-by: Lukas Fleischer <archlinux@cryptocrack.de>
2012-02-19 05:21:48 +01:00
..
stats Fix some more XSS vulnerabilities 2012-02-19 04:48:31 +01:00
actions_form.php Allow for merging deleted packages into existing ones 2011-08-11 16:17:07 +02:00
footer.php Escape all output strings in the header and footer 2012-02-19 05:21:48 +01:00
header.php Escape all output strings in the header and footer 2012-02-19 05:21:48 +01:00
login_form.php web/template/login_form.php: Escape the request URI 2011-09-05 16:56:09 +02:00
pkg_comment_form.php Wrap mysql_real_escape_string() in a function 2011-10-25 09:25:30 +02:00
pkg_comments.php Fix XSS vulnerabilities in package comment templates. 2011-03-30 10:49:51 +02:00
pkg_details.php Fix some more XSS vulnerabilities 2012-02-19 04:48:31 +01:00
pkg_search_form.php rename *.inc files to *.inc.php and adjust imports and references 2011-06-22 15:15:04 +02:00
pkg_search_results.php Allow for merging deleted packages into existing ones 2011-08-11 16:17:07 +02:00
search_accounts_form.php Fix broken XHTML. 2011-03-11 19:00:50 +01:00
template.phps rename *.inc files to *.inc.php and adjust imports and references 2011-06-22 15:15:04 +02:00
tu_details.php Fix broken XHTML. 2011-03-11 19:00:50 +01:00
tu_list.php test return value from db_query before assuming it is valid 2011-05-17 10:43:42 +02:00