mirror/snipe-it
3
0
Fork 0
mirror of https://github.com/snipe/snipe-it.git synced 2026-03-06 08:28:49 +00:00
Code Issues Projects Releases Wiki Activity
Files
324da7c0c8dab4f5355021c97fa3bb850e8b4c21
snipe-it/app/Http/Requests
History
snipe e71e57f16a Fixed XSS vulnerability in SVG image uploads [ch10476] (#7639) 
* Added enshrined/svg-sanitize

* Added modular image resizing/SVG cleaning method

(This already exists in v5, so I mostly ported it forward and added the SVG sanitizer.)

* Use improved handleImages method to upload/resize/clean images

* Removed $old_image

This is handled in the ImageUpload request now
2019-12-05 22:23:05 -08:00
..
AssetCheckinRequest.php
AssetCheckoutRequest.php
Validate checkout_to_type on asset checkout
2017-11-27 21:20:12 -08:00
AssetFileRequest.php
Fixes #5859 - add file name/size to file upload UI (#5861)
2018-07-16 20:09:53 -07:00
AssetRequest.php
Fixes #7252 form request changes (#7272)
2019-07-18 14:32:23 -07:00
CustomFieldRequest.php
ImageUploadRequest.php
Fixed XSS vulnerability in SVG image uploads [ch10476] (#7639)
2019-12-05 22:23:05 -08:00
ItemImportRequest.php
Check for empty headers in import
2019-03-14 15:38:07 -07:00
Request.php
SaveUserRequest.php
Fixes #7252 form request changes (#7272)
2019-07-18 14:32:23 -07:00
SettingsLdapRequest.php
SetupUserRequest.php
Fixed #6703 - fixes password confirmation (#6711)
2019-02-13 23:01:19 -08:00