Goyslop/4chan-x
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
6,520 Commits 2 Branches 0 Tags
Commit Graph

18 Commits

Author SHA1 Message Date
ccd0
0877dc8b8a FileInfo: round bytes also 2014-06-29 00:16:20 -07:00
ccd0
136f778743 rewrite FileInfo for easier XSS checking 2014-06-29 00:05:55 -07:00
ccd0
646c29c4bc fix short filename hover 2014-06-28 22:07:02 -07:00
ccd0
b6739cc45d move HTML escape to global as E 2014-06-28 21:58:14 -07:00
ccd0
05014b7f13 rewrite HTML escaping in post building 2014-05-15 17:02:17 -07:00
ccd0
e74fc2765a move escape function to Build 2014-05-15 10:02:27 -07:00
ccd0
0415828e27 Disallow custom HTML in file info format. 
I doubt anyone is using it, and if someone manages to inject a
malicious script into the page, this could be used to install a
script permanently to be executed each time 4chan is visited.

I'll mention it in the changelog, and if anyone complains, I can
add it back with some security checks.
 2014-05-13 14:20:19 -07:00
ccd0
3365e67c0a ' should be ' 2014-05-13 02:26:28 -07:00
ccd0
97ca89c83d Escape file info more aggressively. 
Most of this isn't strictly necessary, but it makes the script
more robust against changes, either in 4chan or the script itself.
I don't want to have to review this code for vulnerabilities each
time something changes.
 2014-05-12 22:20:04 -07:00
ccd0
57ed5e8055 fix privilege escalation vulnerability 2014-05-12 21:46:18 -07:00
Zixaphir
337b43591b Fix webm PDF bug 
Conflicts:
	builds/4chan-X.user.js
	builds/crx/script.js
 2014-04-04 16:07:08 -07:00
Zixaphir
bdba59eccc Merge branch 'v3' of git://github.com/MayhemYDG/4chan-x into v3 
Conflicts:
	CHANGELOG.md
	CONTRIBUTING.md
	Gruntfile.coffee
	package.json
	src/Miscellaneous/Keybinds.coffee
 2013-12-09 19:00:56 -07:00
Mayhem
26f0fca675 Fix #1376. 2013-12-09 11:18:24 +01:00
Zixaphir
91cedb3b89 Merge branch 'v3' of git://github.com/MayhemYDG/4chan-x into v3 
Conflicts:
	CHANGELOG.md
	html/General/Settings-section-Rice.html
	img/changelog/3.9.0/0.png
	package.json
	src/Images/AutoGIF.coffee
	src/Images/RevealSpoilers.coffee
	src/Miscellaneous/ExpandComment.coffee
	src/Miscellaneous/IDColor.coffee
	src/Monitoring/Unread.coffee
	src/Posting/QuickReply.coffee
	src/Quotelinks/QuoteInline.coffee
	src/Quotelinks/QuotePreview.coffee
	src/Quotelinks/QuoteYou.coffee
	src/Quotelinks/Quotify.coffee
 2013-10-13 13:53:38 -07:00
Mayhem
10e93091d7 {Post,Thread}::callbacks => {Post,Thread}.callbacks 2013-10-02 11:38:15 +02:00
seaweedchan
875f0cd4f8 Merge Zixaphir X 2013-08-12 00:07:39 -07:00
Jordan Bates
09baa3feea Merge Mayhem's structure 2013-04-26 14:04:12 -07:00
Nicolas Stepien
a2e87f1200 Structure. 
God damn War Thunder, download faster!
 2013-04-26 17:40:51 +02:00