github/overleaf
1
0
Fork 0
mirror of https://github.com/overleaf/overleaf.git synced 2024-09-16 02:52:31 -04:00
Code Issues Projects Releases Packages Wiki Activity
overleaf/services/web/app
History
Shane Kilkelly 7f7b10aa09 Sanitize display of system messages. 
When showing system-messages, use default Angular sanitizer, also,
on the admin panel itself, show the verbatim text of the message.

This solves a mild Stored-XSS vulnerability whereby a user could
put `<script>` tags in a message. We don't want that, but we do want
to be able to use basic html tags.
2018-08-22 10:15:50 +01:00
..
coffee Merge pull request #797 from sharelatex/hb-inform-v1-affiliation-confirms 2018-08-22 08:34:33 +01:00
templates/project_files Fix typo and file extension in example tex template 2018-02-06 10:27:10 +00:00
views Sanitize display of system messages. 2018-08-22 10:15:50 +01:00