BookStack

History

Dan Brown 349162ea13 Prevented possible XSS via link attachments This filters out potentially malicious javascript: or data: uri's coming through to be attached to attachments. Added tests to cover. Thanks to Yassine ABOUKIR (@yassineaboukir on twitter) for reporting this vulnerability.		2020-10-31 15:01:52 +00:00
..
icons
js	Added alias for vbscript	2020-10-13 22:44:33 +01:00
lang	Prevented possible XSS via link attachments	2020-10-31 15:01:52 +00:00
sass
views