Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
8 check-ins using file src/th_tcl.c version 73671fcc90
|
2025-04-19
| ||
| 23:24 | More minor fixes resulting from a code audit. check-in: b1711046d9 user: drh tags: th1-taint | |
| 23:02 | Fix additional problems on the new TH1 implementation. check-in: 2c2b6c68b2 user: drh tags: th1-taint | |
| 22:30 | Fix an error that occurs while commiting a new ticket. check-in: 17060ca29a user: drh tags: th1-taint | |
| 22:15 | fix tainted warning in skin headers check-in: de407148e9 user: jkosche tags: th1-taint | |
| 19:18 | Update the default ticket configuration to avoid sending out text that seems tainted. There are no actual XSS issues here, but these changes do add an extra margin of safety. check-in: 5d17ced68d user: drh tags: th1-taint | |
| 19:08 | Mark some TH1 inputs that can be controlled by the user as tainted. check-in: 2742682720 user: drh tags: th1-taint | |
| 18:43 | The taint markings and detection now appears to be working. check-in: d1bb87bcfd user: drh tags: th1-taint | |
| 16:55 | Experimental changes to TH1 to try to make it resistant to coding errors that could lead to XSS or SQL injection attacks. check-in: b0b4492480 user: drh tags: th1-taint | |