MyShaarli/application
ArthurHoaro 72fbbcd679 Security: fix multiple XSS vulnerabilities + fix search tags with special chars
XSS vulnerabilities fixed in editlink, linklist, tag.cloud and tag.list.

Also fixed tag search with special characters: urlencode function needs to be applied on raw data, before espaping, otherwise the rendered URL is wrong.
2020-10-06 17:30:18 +02:00
..
api Revert unrelated changes and add unit tests 2020-09-30 15:57:57 +02:00
bookmark Fix warning if the encoding retrieved from external headers is invalid 2020-09-30 11:11:19 +02:00
config Compatibility with PHP 8 2020-09-29 18:57:22 +02:00
container Properly handle 404 errors 2020-09-12 12:42:19 +02:00
exceptions namespacing: \Shaarli\Exceptions\IOException 2019-01-12 22:47:48 +01:00
feed Add manual configuration for root URL 2020-09-12 21:39:01 +02:00
formatter Security: fix multiple XSS vulnerabilities + fix search tags with special chars 2020-10-06 17:30:18 +02:00
front Security: fix multiple XSS vulnerabilities + fix search tags with special chars 2020-10-06 17:30:18 +02:00
http Add manual configuration for root URL 2020-09-12 21:39:01 +02:00
legacy Merge pull request #1541 from ArthurHoaro/fix/legacy-login-encoding 2020-09-03 18:54:45 +02:00
netscape Better support for notes permalink 2020-07-28 20:46:11 +02:00
plugin Plugins: do not save metadata along plugin parameters 2020-09-12 13:29:34 +02:00
render Security: fix multiple XSS vulnerabilities + fix search tags with special chars 2020-10-06 17:30:18 +02:00
security Fix broken route to filter not tagged bookmarks 2020-08-31 14:09:27 +02:00
updater Fix basePath in unit tests reference DB 2020-07-28 22:34:45 +02:00
.htaccess .htaccess files: support Apache 2.4+ syntax 2016-11-08 11:38:14 +01:00
ApplicationUtils.php Run Unit Tests against PHP 7.4 2020-01-17 18:34:37 +01:00
FileUtils.php namespacing: \Shaarli\FileUtils 2019-01-12 22:47:48 +01:00
History.php Apply the new system (Bookmark + Service) to the whole code base 2020-01-18 09:55:59 +01:00
Languages.php Japanese translation: add language to admin configuration page 2020-08-27 15:00:48 +02:00
Thumbnailer.php Process thumbnail synchronize page through Slim controllers 2020-07-23 21:19:21 +02:00
TimeZone.php Change timezone data structure send to the templates 2017-04-03 19:24:55 +02:00
Utils.php Security: fix multiple XSS vulnerabilities + fix search tags with special chars 2020-10-06 17:30:18 +02:00