github/hedgedoc
1
0
Fork 0
mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-10-19 22:00:15 -04:00
Code Issues Projects Releases Packages Wiki Activity
hedgedoc/public/js
History
Sheogorath a2522888b2
Remove PDF export 
As we already decleared in earlier versions, this patch removes PDF
export entirely. It's a not acceptable security risk for every CodiMD
instance.

The current implementation allowed to extract arbitary files from the
CodiMD host and therefore leaking secrets from a `/etc/passwd` to
CodiMD's own config files and all secrets contained in it.

Thanks to Joona for finding this vulnerability in August last year,
which lead to an emergency disabling of PDF exports in 1.5.0.

Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
2020-02-26 15:05:54 +01:00
..
lib Remove PDF export 2020-02-26 15:05:54 +01:00
cover.js Fix #249 - Focus user field after opening login modal 2020-01-08 18:37:11 +01:00
extra.js make standard conform [fix] 2019-10-30 17:46:54 +01:00
history.js Fix eslint warnings 2019-05-31 00:30:29 +02:00
htmlExport.js Use JavaScript Standard Style (part 2) 2017-03-09 02:41:05 +08:00
index.js Remove PDF export 2020-02-26 15:05:54 +01:00
locale.js support Simplified Chinese and rename original zh to Traditional Chinese 2017-10-23 17:38:04 +08:00
mathjax-config-extra.js Fix MathJax config not being picked up 2017-10-22 02:48:24 +02:00
pretty.js Fix eslint warnings 2019-05-31 00:30:29 +02:00
render.js Don't accept sandbox attribute 2019-10-22 12:04:12 +02:00
reveal-markdown.js Remove the xss library from webpack 2018-11-10 20:27:07 +01:00
slide.js Fix eslint warnings 2019-05-31 00:30:29 +02:00
utils.js Update to migrate note url in the history of browser storage and cookie 2018-03-03 16:26:19 +08:00