mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
nextcloud/lib
History
Lukas Reschke f3e9106864 Don't trust update server 
In case the update server may deliver malicious content this would allow an adversary to inject arbitrary HTML into the response. So very bad stuff.

While signing the response would be better and something we can also do in the future (considering the code signing work), this is already a good first start.
 		2015-11-28 12:21:53 +01:00
..
l10n [tx-robot] updated from transifex 2015-11-24 01:56:32 -05:00
private Don't trust update server 2015-11-28 12:21:53 +01:00
public Merge pull request #20702 from owncloud/move-user-principal-into-subfolder 2015-11-26 16:49:49 +01:00
repair Merge pull request #20320 from owncloud/drop-file_map 2015-11-05 10:03:41 +01:00
autoloader.php Dont bother with stream_resolve_include_path if the path is already absolute 2015-11-27 14:12:14 +01:00
base.php Untangle the linkToDocs method in OC_Helper 2015-11-26 13:58:43 +01:00