mirror/transmission
1
0
Fork 0
mirror of https://github.com/transmission/transmission synced 2025-03-11 22:52:53 +00:00
Code Issues Releases Wiki Activity
transmission/web/javascript
History
Mike Gelfand 523d8c1317 Tracker error XSS in inspector (web client) 
Tracker error messages are inadequately output encoded when rendered by the
tracker information page inside the WebUI, allowing a malicious tracker to
inject an XSS payload into the page. Esploiting this issue allows an
attacker to supply arbitrary client-side code that will ultimately be
rendered and executed within the end user's web browser.

Found by Rory McNamara (Gotham Digital Science). CVE pending.
2018-04-17 13:25:49 +03:00
..
jquery #4866: Replace existing menus with jQueryUI menu 2015-04-30 05:20:48 +00:00
common.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
dialog.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
file-row.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
formatter.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
inspector.js Tracker error XSS in inspector (web client) 2018-04-17 13:25:49 +03:00
Makefile.am update makefile for notifications.js 2012-06-15 23:23:31 +00:00
notifications.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
prefs-dialog.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
remote.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
torrent-row.js #5944: Unify indentation style and strip trailing whitespaces across JS code, no functional changes (patch by xzcvczx + a lot more) 2015-05-05 19:12:48 +00:00
torrent.js #5974: Torrents queued should be able to "Resume Now" (patch by JJTagy) 2016-01-03 20:57:42 +00:00
transmission.js Switch to HTTPS links, adjust wiki links where possible 2018-01-16 01:12:59 +03:00