dépôts
/
lhc
/
web
/
wiklou.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(from:
2885126
)
SECURITY: Escape wikitext content model/format in message
author
Brian Wolff
<bawolff+wn@gmail.com>
Mon, 13 Mar 2017 21:20:02 +0000
(21:20 +0000)
committer
Chad Horohoe
<chadh@wikimedia.org>
Thu, 6 Apr 2017 20:42:58 +0000
(13:42 -0700)
Escape wikitext in model= and format= url parameter to
edit page. This goes along with
1c788944
to help prevent
XSS for wikis with $wgRawHtml = true; set.
Bug: T156184
Change-Id: Ifcaa2ccf05a2a691d0b150e2f7e0e765db25fc7f
No differences found