HomePhabricator
Diffusion extension-Widgets abea2b883d6b

Fix possibility for arbitrary HTML output
abea2b883d6b
Actions

Description

Fix possibility for arbitrary HTML output

Trusting the page content is inherently insecure. Instead, store the
parsed content in an array and output an index to retrieve it later.

Modernize code style slightly, while at it.

Bug: T88964
Change-Id: I00ede9c7f333f32f2cc7722781b06f97a544927f

Details

Provenance
MajrAuthored on
Nemo_bisCommitted on Feb 12 2015, 3:31 PM
Parents
rEWIDe578cde07a73: Localisation updates from https://translatewiki.net.
Branches
Unknown
Tags
Unknown
References
refs/changes/49/189449/2
ChangeId
I00ede9c7f333f32f2cc7722781b06f97a544927f

Still Importing...

This commit is still importing. Changes will be visible once the import finishes.
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL