mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
nextcloud/core/templates
History
Lukas Reschke f3e9106864 Don't trust update server 
In case the update server may deliver malicious content this would allow an adversary to inject arbitrary HTML into the response. So very bad stuff.

While signing the response would be better and something we can also do in the future (considering the code signing work), this is already a good first start.
 		2015-11-28 12:21:53 +01:00
..
filetemplates
403.php
404.php
altmail.php
error.php
exception.php Merge pull request #15012 from Volker-E/master 2015-03-24 12:07:26 +01:00
filepicker.html
installation.php remove unneeded icons from input fields to not distract from submit button, fix #18940 2015-10-30 11:11:37 +01:00
internalaltmail.php Allow separate templates for internal and external share notifications 2015-10-29 10:24:24 +01:00
internalmail.php Allow separate templates for internal and external share notifications 2015-10-29 10:24:24 +01:00
layout.base.php Merge pull request #20236 from maprambo/safari-pinned-tab-icon 2015-11-09 11:12:38 +01:00
layout.guest.php Merge pull request #20236 from maprambo/safari-pinned-tab-icon 2015-11-09 11:12:38 +01:00
layout.noscript.warning.php
layout.user.php Don't trust update server 2015-11-28 12:21:53 +01:00
login.php remove unneeded icons from input fields to not distract from submit button, fix #18940 2015-10-30 11:11:37 +01:00
mail.php
message.html
singleuser.user.php
tags.html
untrustedDomain.php Update untrustedDomain.php 2015-11-12 14:33:59 +01:00
update.admin.php update page: fix heading whitespace and unbold less important sections 2015-11-25 13:16:00 +01:00
update.user.php