revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-12-16 10:30:56 +01:00
Code Issues Releases Wiki Activity
phorge-phorge/src/applications/calendar
History
epriestley 02e8a322dc Defuse XSS in Calendar 
Summary: `addDetail()` takes HTML because we have links there fairly often. :/ This design is iffy.

Test Plan: Reloaded `/calendar/status/`, verified no XSS.

Reviewers: btrahan, vrana

Reviewed By: vrana

CC: aran

Maniphest Tasks: T139

Differential Revision: https://secure.phabricator.com/D4074
2012-12-03 16:46:56 -08:00
..
application Delete license headers from files 2012-11-05 11:16:51 -08:00
controller Defuse XSS in Calendar 2012-12-03 16:46:56 -08:00
storage Delete license headers from files 2012-11-05 11:16:51 -08:00
view improve calendar status editing 2012-11-12 13:28:45 -08:00