Project

General

Profile

Statistics
| Branch: | Tag: | Revision:
Name Size
  bin
  captiveportal
  pkg
  sbin
  share
  www

Latest revisions

# Date Author Comment
8db87547 10/31/2012 07:53 PM Jim Pingle

Encode this before showing it.

a138f065 10/31/2012 07:51 PM Jim Pingle

Encode parameters before showing them to users.

ac4cbc15 10/31/2012 07:44 PM Jim Pingle

Encode some more parameters before showing them to users.

bb33a337 10/31/2012 06:23 PM Jim Pingle

Encode the interface parameter before using it in a redirect

e653b6e1 10/31/2012 06:06 PM Jim Pingle

Encode the if parameter before using it in redirects, too.

Conflicts:

usr/local/www/firewall_rules.php
abe430cc 10/31/2012 06:01 PM Jim Pingle

Encode the if parameter before using it in html

e26e0eac 10/31/2012 05:39 PM Jim Pingle

Escape parameters better when managing tables. Fix test to allow deleting subnet entries as well as IPs.

Conflicts:

usr/local/www/diag_tables.php
398d29a6 10/31/2012 03:38 PM Jim Pingle

Remove debug output

56befec1 10/31/2012 02:49 PM Jim Pingle

Set the CSRF Magic timeout to the same as the session timeout, so that if a user sets a lower session time, the CSRF magic tokens do not outlive the user's session.

fcf53c1e 10/31/2012 12:39 PM Jim Pingle

Update CSRF Magic

View revisions

Also available in: Atom