snipe-it

mirror of https://github.com/snipe/snipe-it.git synced 2025-02-02 08:21:09 -08:00

History

snipe e71e57f16a Fixed XSS vulnerability in SVG image uploads [ch10476] (#7639 ) * Added enshrined/svg-sanitize * Added modular image resizing/SVG cleaning method (This already exists in v5, so I mostly ported it forward and added the SVG sanitizer.) * Use improved handleImages method to upload/resize/clean images * Removed $old_image This is handled in the ImageUpload request now		2019-12-05 22:23:05 -08:00
..
Console	Added 4260352 to ldapsync enabled account constraint	2019-10-18 17:48:50 -07:00
Events
Exceptions	Fixes #7252 form request changes (#7272 )	2019-07-18 14:32:23 -07:00
Helpers	Fixed more camel-casing -> snake-casing	2019-05-24 16:01:12 -07:00
Http	Fixed XSS vulnerability in SVG image uploads [ch10476] (#7639 )	2019-12-05 22:23:05 -08:00
Importer	Apply fix for #6642 to master	2019-09-30 19:21:57 -07:00
Jobs
LegacyEncrypter
Listeners
Models	Fixed comment (#7617 )	2019-11-22 16:13:42 -08:00
Notifications
Observers
Policies	Fixed #6956 - viewKeys policy inconsistent (#7009 )	2019-05-08 08:14:49 -04:00
Presenters	Removed escaping on custom fields in presenter (#7631 )	2019-12-03 17:42:13 -08:00
Providers	Increased image size to 800px, added lightboxes	2019-05-24 19:11:08 -07:00