mirrors/copyparty
1
0
Fork 0
mirror of https://github.com/9001/copyparty.git synced 2025-08-18 01:22:13 -06:00
Code Issues Actions Packages Projects Releases Wiki Activity
copyparty/copyparty/web
History
ed 438ea6ccb0 fix GHSA-m2jw-cj8v-937r ; 
this fixes a DOM-Based XSS when preparing files for upload;
empty files would have their filenames rendered as HTML in
a messagebox, making it possible to trick users into running
arbitrary javascript by giving them maliciously-named files

note that, being a general-purpose webserver, it is still
intentionally possible to upload and execute arbitrary
javascript, just not in this unexpected manner
2025-02-24 21:23:13 +00:00
..
a forgot the u2c symlink + sfx listing 2023-05-07 15:45:20 +00:00
dd fix testrunner + packaging 2022-12-03 15:07:47 +00:00
deps fix testrunner + packaging 2022-12-03 15:07:47 +00:00
baguettebox.js bbox: try to detect media load errors 2025-01-31 21:13:35 +00:00
browser.css spinner: themes + improve positioning 2025-02-19 18:55:33 +00:00
browser.html http rtt in serverinfo panel 2025-01-31 20:00:33 +00:00
browser.js v1.16.14 2025-02-19 23:09:14 +00:00
browser2.html v1.14.0 2024-08-18 23:11:36 +00:00
cf.html add trailing empty line to jinja templates; 2024-02-21 18:51:10 +00:00
copyparty.gif static resources 2019-06-02 14:16:53 +00:00
dbg-audio.js golf 2022-07-15 02:07:13 +02:00
iiam.gif list active downloads in controlpanel 2024-11-10 02:12:18 +00:00
Makefile v1.7.1 2023-05-07 18:34:39 +00:00
md.css add support for custom fonts; closes #74 2024-02-24 23:30:17 +00:00
md.html jinja optimizations 2024-12-20 16:34:17 +00:00
md.js golf useragent to ua 2025-01-24 19:56:56 +00:00
md2.css add support for custom fonts; closes #74 2024-02-24 23:30:17 +00:00
md2.js golf useragent to ua 2025-01-24 19:56:56 +00:00
mde.css add support for custom fonts; closes #74 2024-02-24 23:30:17 +00:00
mde.html jinja optimizations 2024-12-20 16:34:17 +00:00
mde.js make cloudflare outages non-fatal to uploads 2024-03-08 21:33:39 +00:00
msg.css add support for custom fonts; closes #74 2024-02-24 23:30:17 +00:00
msg.html add option to load custom js on all pages 2024-08-11 23:51:17 +00:00
rups.css recent-uploads: move rendering to js 2024-12-20 23:52:03 +00:00
rups.html recent-uploads: move rendering to js 2024-12-20 23:52:03 +00:00
rups.js recent-uploads: move rendering to js 2024-12-20 23:52:03 +00:00
shares.css list recent uploads 2024-12-18 22:17:30 +01:00
shares.html recent-uploads: move rendering to js 2024-12-20 23:52:03 +00:00
shares.js avoid layout-shift for qr-codes 2024-11-22 22:44:44 +00:00
splash.css fix downloads-eta layout jank 2024-11-17 19:39:44 +00:00
splash.html jinja optimizations 2024-12-20 16:34:17 +00:00
splash.js list recent uploads 2024-12-18 22:17:30 +01:00
svcs.html versus: seafile fix, filebrowser fork 2025-01-13 22:30:46 +00:00
svcs.js option to disable caf transcoding + misc cleanup 2025-01-24 22:40:52 +00:00
ui.css avoid layout-shift for qr-codes 2024-11-22 22:44:44 +00:00
up2k.js fix GHSA-m2jw-cj8v-937r ; 2025-02-24 21:23:13 +00:00
util.js improve iPad detection; 2025-01-27 21:06:47 +00:00
w.hash.js up2k.js: detect broken webworkers; 2024-10-18 16:50:15 +00:00