Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update git submodules

Browse source 
* Update extensions/VisualEditor from branch 'REL1_43'
  to 19567501cb05fdcfe547b9c1a0a3d82ca5a309ad
  - SECURITY: Properly escape and parse system messages
    
    CVE-2025-61655
    
    * Parse lastmodifiedat in PHP and return via API to support
      tags that are not supported by jQueryMsg
    * Escape parentheses message and manually insert the parameter
    
    This addresses two stored i18n XSS vulnerabilities.
    
    Bug: T395858
    Change-Id: Id0c62956bf5ae6e0d952cbd1eddfc845d2cdc9a6
This commit is contained in:
SomeRandomDeveloper 2025-10-02 22:46:05 +02:00 committed by Gerrit Code Review
parent 60bfc70e21
commit 75745977fa
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
extensions/VisualEditor

@ -1 +1 @@
Subproject commit 79f3eeb4931194e61caf25a3b6d5a0448653f2d6
Subproject commit 19567501cb05fdcfe547b9c1a0a3d82ca5a309ad