ttrss

Commit Graph

Author	SHA1	Message	Date
Andrew Dolgov	c3d14e1fa5	- fix multiple vulnerabilities in af_proxy_http - fix vulnerability in rewrite_relative_url() which prevented some URLs from being properly absolutized - fetch_file_contents: validate all URLs before requesting them - validate URLs: explicitly whitelist http and https scheme, forbid everything else - DiskCache/cached_url: only serve whitelisted content types (images, video) - simplify filename/URL handling code, remove and consolidate some less-used functions	2020-09-14 19:46:52 +03:00
Andrew Dolgov	3e4701116d	af_readability: add missing file	2019-08-16 15:29:24 +03:00
Andrew Dolgov	5373b2fe0a	hotkey help: remove more info button	2019-03-07 12:27:18 +03:00
Andrew Dolgov	6ec602e1a4	digestTest: don't display empty digest when not logged in	2019-03-04 07:00:20 +03:00
Andrew Dolgov	da1b3e3ba1	digest: add ARTICLE_LABELS	2019-03-02 17:57:25 +03:00
Andrew Dolgov	335147e572	dialogs: use semantic markup instead of dlgsec stuff continue unifying quoting style for html strings	2019-02-22 10:48:56 +03:00
Andrew Dolgov	4e253add8c	UI: add some more info links to relevant wiki pages; minor layout updates	2019-02-21 16:21:16 +03:00
Andrew Dolgov	96fccefa62	update hotkey help dialog a bit	2018-12-10 08:37:24 +03:00
Andrew Dolgov	e6532439d6	force strip_tags() on all user input unless explicitly allowed	2017-12-03 23:35:38 +03:00
Andrew Dolgov	c2f0f24e4c	move digest stuff to Digest class	2017-05-04 15:41:38 +03:00
Andrew Dolgov	ea79a0e033	remove some redundant php closing tags	2017-04-26 20:24:18 +03:00
Andrew Dolgov	a42c55f02b	fix blank character after opening bracket in function calls	2013-04-17 18:34:18 +04:00
Andrew Dolgov	6322ac79a0	remove $link	2013-04-17 16:48:41 +04:00
Andrew Dolgov	fcef9eeae0	remove dialogNotice; tweak dialog appearance a bit	2013-03-28 14:01:25 +04:00
Andrew Dolgov	5b18c93622	tweak hotkey map notation to allow stuff like shift-arrows	2013-03-18 20:59:48 +04:00
Andrew Dolgov	7d272e5c04	fix warning in hotkey help dialog when disabled hotkey is processed	2013-03-15 10:05:48 +04:00
Andrew Dolgov	c2e4e8fe91	hotkey help: fix actions bound to multiple sequences not displayed correctly	2013-02-27 22:58:43 +04:00
Andrew Dolgov	e5e2cf3b88	add hack to support arbitrary key descriptions for hotkeys	2013-01-22 12:52:52 +04:00
Andrew Dolgov	93f53ffe55	help: remove checkboxes	2012-12-29 15:07:22 +04:00
Andrew Dolgov	b8cb4d08b3	help cleanup, use dijit dialog	2012-12-28 15:42:02 +04:00
Andrew Dolgov	f16116834e	split digest stuff into digest.php	2012-12-24 15:52:59 +04:00
Andrew Dolgov	9a5f5633c0	remove backend/digestSend	2012-11-01 12:35:21 +04:00
Andrew Dolgov	8437c066e1	implement digestTest back misc digest updates and improvements	2012-01-31 16:27:51 +04:00
Andrew Dolgov	61c1812f29	implement preferred time for sending out digests	2012-01-30 16:34:45 +04:00
Andrew Dolgov	66be620a87	do not include keyboard help files into index and prefs.php	2011-12-14 15:51:27 +04:00
Andrew Dolgov	4f09f594c2	move help to backend class	2011-12-13 11:02:43 +04:00
Andrew Dolgov	611efae712	add catchall backend class	2011-12-13 10:58:30 +04:00

27 Commits