Difuse/luci
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
luci/modules/luci-base/luasrc/view
History
Jo-Philipp Wich 5c31937a0f luci-base: escape path strings and field parameter 
Prevent various XSS vectors by not interpolating field and path values
verbatim into script and html contexts.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2018-04-07 11:43:44 +02:00
..
cbi luci-base: escape path strings and field parameter 2018-04-07 11:43:44 +02:00
csrftoken.htm luci-base: add support for POST-only actions with CSRF token check 2015-10-06 15:56:35 +02:00
error404.htm Globally convert headline anchors into name attributes. 2015-10-06 13:30:33 +02:00
error500.htm Globally convert headline anchors into name attributes. 2015-10-06 13:30:33 +02:00
footer.htm Update my email addresses in the license headers 2015-01-16 23:49:44 +01:00
header.htm Update my email addresses in the license headers 2015-01-16 23:49:44 +01:00
indexer.htm Update my email addresses in the license headers 2015-01-16 23:49:44 +01:00
sysauth.htm luci-base: use FULL_REQUEST_URI on login form templates 2018-04-04 23:30:49 +02:00