1. 12 Jan, 2017 1 commit
  2. 03 Jan, 2017 1 commit
  3. 23 Dec, 2016 1 commit
  4. 22 Dec, 2016 2 commits
  5. 21 Dec, 2016 8 commits
  6. 20 Dec, 2016 2 commits
  7. 28 Nov, 2016 1 commit
  8. 27 Nov, 2016 1 commit
  9. 17 Jan, 2016 1 commit
    • Marcel Müller's avatar
      Fix XSS in all messages using the pod's name. · 26e27e6b
      Marcel Müller authored
      This commit fixes a Persistent XSS. The problem was that at no point the output
      was sanitized, allowing each pod to control the column 'name' in the database.
      Since this can be set to anything one wants it can be malicious.
      Using htmlentities(name, ENT_QUOTES) should be sufficient to ward this off.
      26e27e6b
  10. 15 Jan, 2016 1 commit
  11. 28 Aug, 2015 1 commit
  12. 10 Feb, 2015 1 commit
  13. 05 Feb, 2015 1 commit