Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
wiki.techinc.nl/includes/CommentFormatter
History
Brian Wolff 36c9bdf09c SECURITY: Ensure CommentParser link processing does not lead to XSS 
CVE-2024-PENDING

A malicious editor could potentially create an edit summary or log
summary with links such that a link marker is in an attribute which
will then get replaced allowing the content to break out of the
attribute leading to an XSS.

Bug: T355538
Change-Id: If20a8a95e84bb2f6e132bdda4907e3db6f133a8e
2024-03-28 22:51:59 +00:00
..
CommentBatch.php
CommentFormatter.php Update name & email for bvibber 2024-02-08 17:02:16 -08:00
CommentItem.php
CommentParser.php SECURITY: Ensure CommentParser link processing does not lead to XSS 2024-03-28 22:51:59 +00:00
CommentParserFactory.php Namespace includes/cache 2024-02-20 10:28:03 -05:00
RevisionCommentBatch.php
RowCommentFormatter.php
RowCommentIterator.php
StringCommentIterator.php