Digitalstack/myaac
2
0
Fork 0
mirror of https://github.com/slawkens/myaac.git synced 2025-04-27 17:59:22 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix XSS in character search

Browse Source
This commit is contained in:
slawkens 2020-06-06 18:32:22 +02:00
parent c1d1e9596a
commit dfc70c098f
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
CHANGELOG.md
View File

@ -7,6 +7,7 @@
* Caused migrations being fired when user manually imported database * Caused migrations being fired when user manually imported database
### Fixed ### Fixed
* XSS in character search
* Admin menu news editing warning when leaving page without touching the inputs * Admin menu news editing warning when leaving page without touching the inputs
## [0.8.2 - 03.06.2020] ## [0.8.2 - 03.06.2020]

2
system/templates/error_box.html.twig
View File

@ -9,7 +9,7 @@
<div class="AttentionSign" style="background-image:url({{ template_path }}/images/content/attentionsign.gif);"></div> <div class="AttentionSign" style="background-image:url({{ template_path }}/images/content/attentionsign.gif);"></div>
<b>The Following Errors Have Occurred:</b><br/> <b>The Following Errors Have Occurred:</b><br/>
{% for error in errors %} {% for error in errors %}
<li>{{ error|raw }}</li> <li>{{ error|striptags('<b>')|raw }}</li>
{% endfor %} {% endfor %}
</div> </div>
<div class="BoxFrameHorizontal" style="background-image:url({{ template_path }}/images/content/box-frame-horizontal.gif);"></div> <div class="BoxFrameHorizontal" style="background-image:url({{ template_path }}/images/content/box-frame-horizontal.gif);"></div>