noosfero | Fix XSS terminate removing custom attributes for Macros (#748)
Rodrigo Souto
gitlab at mg.gitlab.com
Tue Dec 15 15:01:18 BRST 2015
New comment for Merge Request 748
https://gitlab.com/noosfero/noosfero/merge_requests/748#note_2957104
Rodrigo Souto
We still need to figure out a way of avoiding data-macro-* attributes do be filtered, but I'm merging this since it allows macros without attribute to work properly.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listas.softwarelivre.org/pipermail/noosfero-dev/attachments/20151215/9d9b98df/attachment.html>
More information about the Noosfero-dev
mailing list