1. 27 Nov, 2016 1 commit
  2. 17 Jul, 2016 1 commit
  3. 23 Feb, 2016 1 commit
  4. 21 Jan, 2016 1 commit
    • dmorley's avatar
      fix · 1070eac2
      dmorley authored
      1070eac2
  5. 20 Jan, 2016 1 commit
  6. 18 Jan, 2016 1 commit
  7. 17 Jan, 2016 1 commit
    • Marcel Müller's avatar
      Fix XSS in all messages using the pod's name. · 26e27e6b
      Marcel Müller authored
      This commit fixes a Persistent XSS. The problem was that at no point the output
      was sanitized, allowing each pod to control the column 'name' in the database.
      Since this can be set to anything one wants it can be malicious.
      Using htmlentities(name, ENT_QUOTES) should be sufficient to ward this off.
      26e27e6b
  8. 15 Jan, 2016 1 commit
  9. 05 Jan, 2016 1 commit
  10. 04 Jan, 2016 1 commit
  11. 30 Dec, 2015 3 commits
  12. 29 Dec, 2015 3 commits
  13. 21 Dec, 2015 1 commit
  14. 19 Dec, 2015 1 commit
  15. 18 Dec, 2015 2 commits
  16. 06 Sep, 2015 1 commit
  17. 28 Aug, 2015 1 commit
  18. 19 Mar, 2015 1 commit
  19. 10 Feb, 2015 1 commit
  20. 05 Feb, 2015 3 commits
  21. 04 Feb, 2015 1 commit
  22. 03 Feb, 2015 3 commits
  23. 02 Feb, 2015 2 commits
  24. 01 Feb, 2015 3 commits
  25. 26 Dec, 2014 2 commits
  26. 18 Nov, 2014 1 commit
  27. 27 Sep, 2014 1 commit