Skip to content

GitLab

Explore

Sign in
Register

Primary navigation

Project

S

swh-web
- Activity
- Members
- Labels

Snippets Groups Projects

ccfc1575

Commit ccfc1575 authored 5 years ago by Kalpit Kothari

Downloads
- Patches
- Plain Diff

swh-web: Fix numerous XSS vulnerabilities

Fix XSS vulnerabilities in origin-search table, various error pages and API HTML interface.

Closes T1699

Escape unsafe objects in Error Page

top-navigation: Fix XSS in branch name

Fix XSS in API HTML interface

parent d9d9e67d

No related branches found

No related tags found

Loading

Changes 7

Hide whitespace changes

Inline Side-by-side

Showing

swh/web/api/apiresponse.py 6 additions, 0 deletions

swh/web/api/apiresponse.py
swh/web/assets/src/bundles/browse/origin-search.js 1 addition, 1 deletion

swh/web/assets/src/bundles/browse/origin-search.js
swh/web/browse/utils.py 5 additions, 3 deletions

swh/web/browse/utils.py
swh/web/browse/views/utils/snapshot_context.py 2 additions, 1 deletion

swh/web/browse/views/utils/snapshot_context.py
swh/web/common/exc.py 5 additions, 4 deletions

swh/web/common/exc.py
swh/web/common/origin_save.py 2 additions, 1 deletion

swh/web/common/origin_save.py
swh/web/templates/includes/top-navigation.html 2 additions, 2 deletions

swh/web/templates/includes/top-navigation.html

with 23 additions and 12 deletions

Loading

Phabricator Migration user @phabricator-migration · 5 years ago

Owner
Some references in the commit message have been migrated:

T1699 is now #1699 (closed)

Some references in the commit message have been migrated: * T1699 is now #1699

0% Loading or .

You are about to add 0 people to the discussion. Proceed with caution.

Finish editing this message first!

Please register or sign in to comment