projects / ikiwiki / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 829d097) | patch
* Fix a security hole that allowed insertion of unsafe content via the meta
authorjoey <joey@0fa5a96a-9a0e-0410-b3b2-a0fd24251071>
Wed, 21 Mar 2007 18:52:56 +0000 (18:52 +0000)
committerjoey <joey@0fa5a96a-9a0e-0410-b3b2-a0fd24251071>
Wed, 21 Mar 2007 18:52:56 +0000 (18:52 +0000)
commitc8b4ba354f82fbbcebbbfca65b40a047f9920525
tree6dd5bd85031e42da9a3c65d1c5c3f9bfacfdfcdatree | snapshot
parent829d097dc52b6a8f50297406affc67fbc08dccb7commit | diff
* Fix a security hole that allowed insertion of unsafe content via the meta
  plugins's support for inserting html link and meta tags. Now such content
  is passed through the htmlscrubber like everything else.
* Unfortunatly, that means that some valid uses of those tags are no longer
  usable, and special case methods needed to be added for including
  stylesheets, and for doing openid delegation. If you use either of these
  in your wiki, it will need to be modified. See the meta plugin docs
  for details.
16 files changed:
IkiWiki/Plugin/meta.pm diff | blob | blame | history
debian/NEWS diff | blob | blame | history
debian/changelog diff | blob | blame | history
doc/css_market.mdwn diff | blob | blame | history
doc/openid.mdwn diff | blob | blame | history
doc/plugins/meta.mdwn diff | blob | blame | history
doc/security.mdwn diff | blob | blame | history
po/bg.po diff | blob | blame | history
po/cs.po diff | blob | blame | history
po/es.po diff | blob | blame | history
po/fr.po diff | blob | blame | history
po/gu.po diff | blob | blame | history
po/ikiwiki.pot diff | blob | blame | history
po/pl.po diff | blob | blame | history
po/sv.po diff | blob | blame | history
po/vi.po diff | blob | blame | history
Ikiwiki patches