Age | Commit message (Collapse) | Author |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
tag-related code
|
|
https://github.com/php/php-src/blob/2d467abc46ec4ee97484d4e35909bed322600037/UPGRADING#L886
|
|
The global in 'sanity_check()' was null... possibly due to circular requires?
|
|
|
|
|
|
|
|
|
|
|
|
classes instead
|
|
|
|
|
|
validate_url: treat scheme as case-insensitive
|
|
|
|
|
|
|
|
filtering to fetch_file_contents()
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* get_random_bytes: use PHP7 random_bytes() if it is available
* validate CSRF token using hash_equals
|
|
parameter
use type-strict comparison when validating CSRF token on the backend
|
|
|
|
loopback address
|
|
rewrite_relative_url: simplify handling of relative URLs
|
|
|
|
|
|
|
|
|
|
|
|
|
|
hooks
|
|
|
|
- fix vulnerability in rewrite_relative_url() which prevented some URLs from being properly absolutized
- fetch_file_contents: validate all URLs before requesting them
- validate URLs: explicitly whitelist http and https scheme, forbid everything else
- DiskCache/cached_url: only serve whitelisted content types (images, video)
- simplify filename/URL handling code, remove and consolidate some less-used functions
|
|
https://community.tt-rss.org/t/problem-with-img-srcset/3519
|
|
|
|
pgup/pgdn)"
This reverts commit 6fc18e450b72306693de8723464f4176e73c5a5b.
|
|
|
|
https://community.tt-rss.org/t/changing-the-amount-of-scroll-by-arrow-key/3452/7
|