https://src.bluestatic.org / bugdar.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: b9f1d07) | patch
r1292: Prevent XSS attacks by only allowing JPEG, JPG, PNG, and GIF to be displayed...
authorRobert Sesek <rsesek@bluestatic.org>
Sun, 19 Nov 2006 09:03:58 +0000 (09:03 +0000)
committerRobert Sesek <rsesek@bluestatic.org>
Sun, 19 Nov 2006 09:03:58 +0000 (09:03 +0000)
commit8e3958cf568555574782b14724138dda249d4b2f
tree72b2dcf1d30066d0bda06945031abf50d268ccf4tree
parentb9f1d072f8334dad4214e939c4a2798ecc542001commit | diff
r1292: Prevent XSS attacks by only allowing JPEG, JPG, PNG, and GIF to be displayed as Content-Type:inline as everything else can be used to execute scripts and such, which would be bad
docs/changes.txt diff | blob | history
viewattachment.php diff | blob | history
Open-source PHP-MySQL bug tracking system that has customizable CSS/XHTML templates, email notifications, Atom syndication, internationalization support, and a very simple setup.