Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security Fix for Cross-site Scripting (XSS) - huntr.dev #860

Open
wants to merge 9 commits into
base: master
Choose a base branch
from
Open

Security Fix for Cross-site Scripting (XSS) - huntr.dev #860

wants to merge 9 commits into from

Commits on Mar 25, 2020

  1. Document usage of htmlDecode to avoid XSS Fixes pandao#715

    @alromh87
    alromh87 committed Mar 25, 2020
    Configuration menu
    Copy the full SHA
    9c09a8f View commit details
    Browse the repository at this point in the history

Commits on Mar 27, 2020

  1. Fix pandao#715 

    Disable script and on events by default to avoid XSS.

User can enable by setting allowScript|allowOn

Readme updated
    @alromh87
    alromh87 committed Mar 27, 2020
    Configuration menu
    Copy the full SHA
    0c6cdde View commit details
    Browse the repository at this point in the history

Commits on Apr 3, 2020

  1. Merge pull request #1 from alromh87/master 

    Merging fix on-behalf of @alromh87 (034-js-editor-md).
    @huntr-helper
    huntr-helper authored Apr 3, 2020
    Configuration menu
    Copy the full SHA
    2da440a View commit details
    Browse the repository at this point in the history

Commits on Sep 9, 2020

  1. Enhance filterHTML Regexp to handle self closing tags 

    Reported in huntr 418sec/huntr#443
    @alromh87
    alromh87 committed Sep 9, 2020
    Configuration menu
    Copy the full SHA
    3d822bc View commit details
    Browse the repository at this point in the history

Commits on Sep 10, 2020

  1. cmMessge.txt

    @alromh87
    alromh87 committed Sep 10, 2020
    Configuration menu
    Copy the full SHA
    7d12de6 View commit details
    Browse the repository at this point in the history

  2. Improve RegExp filter 

    fixes #pandao#612
fixes #pandao#662
fixes #pandao#697
fixes #pandao#700
fixes #pandao#701
fixes #pandao#709
fixes #pandao#715
fixes #pandao#764
fixes #pandao#816

### Probably:
fixes #pandao#307
fixes #pandao#560
    @alromh87
    alromh87 committed Sep 10, 2020
    Configuration menu
    Copy the full SHA
    f5cb82c View commit details
    Browse the repository at this point in the history

  3. Improve RegExp filter 

    fixes #pandao#612
fixes #pandao#662
fixes #pandao#697
fixes #pandao#700
fixes #pandao#701
fixes #pandao#709
fixes #pandao#715
fixes #pandao#764
fixes #pandao#816

fixes #pandao#307
fixes #pandao#560
    @alromh87
    alromh87 committed Sep 10, 2020
    Configuration menu
    Copy the full SHA
    067619e View commit details
    Browse the repository at this point in the history

Commits on Sep 17, 2020

  1. Update of editor.md on base dir 

    Cleanup for uglify
    @alromh87
    alromh87 committed Sep 17, 2020
    Configuration menu
    Copy the full SHA
    3945449 View commit details
    Browse the repository at this point in the history

Commits on Sep 22, 2020

  1. Merge pull request #2 from alromh87/master 

    Enhance filterHTML Regexp to handle self closing tags
    Raj authored Sep 22, 2020
    Configuration menu
    Copy the full SHA
    2a6ef97 View commit details
    Browse the repository at this point in the history