forgejo/templates/repo/issue
Gusted fe2df46d05
[SECURITY] Fix XSS in dismissed review
- It's possible for reviews to not be assiocated with users, when they
were migrated from another forge instance. In the migration code,
there's no sanitization check for author names, so they could contain
HTML tags and thus needs to be properely escaped.
- Pass `$reviewerName` trough `Escape`.
2024-02-22 15:04:36 +01:00
..
fields
labels
milestone
view_content [SECURITY] Fix XSS in dismissed review 2024-02-22 15:04:36 +01:00
branch_selector_field.tmpl
card.tmpl
choose.tmpl
comment_tab.tmpl
filter_actions.tmpl
filters.tmpl
label_precolors.tmpl
labels.tmpl
list.tmpl
milestone_issues.tmpl
milestone_new.tmpl
milestones.tmpl
navbar.tmpl
new.tmpl
new_form.tmpl
openclose.tmpl
search.tmpl
view.tmpl
view_content.tmpl
view_title.tmpl