stable
Clone or download
Read-only
request #7953: Start the removing of the SimpleSanitizer class
We start by removing all SimpleSanitizer references in the tracker plugin. TrackerV3 will come later. The SimpleSanitizer class seems to have been created to prevent XSS but the sanitize function is not safe. Moreover, there is the Codendi_HTMLPurifier class for this need. Change-Id: Ie349a7db6c5fc14922bc32c6ab66929295c25822
Modified Files
| Name | ||||
|---|---|---|---|---|
| A | plugins/tracker/db/mysql/updates/2015/201506301700_convert_possible_old_text_format_tracker.php | +50 | −0 | Go to diff View file |
| M | plugins/tracker/include/Tracker/Artifact/Tracker_Artifact_Changeset.class.php | +1 | −1 | Go to diff View file |
| M | plugins/tracker/include/Tracker/DateReminder/Tracker_DateReminderManager.class.php | +1 | −1 | Go to diff View file |
| M | plugins/tracker/include/Tracker/FormElement/Tracker_FormElement_Field_Selectbox.class.php | +6 | −6 | Go to diff View file |
| M | plugins/tracker/include/Tracker/Rule/Tracker_RulesManager.class.php | +2 | −2 | Go to diff View file |
| M | plugins/tracker/include/Tracker/SOAPServer.class.php | +2 | −2 | Go to diff View file |
| M | plugins/tracker/include/Tracker/TrackerManager.class.php | +1 | −1 | Go to diff View file |
| D | plugins/tracker/include/Tracker/Tracker_Import.class.php | +0 | −1160 | Go to diff View file |
| M | plugins/tracker/include/autoload.php | +2 | −3 | Go to diff View file |
| D | plugins/tracker/tests/ArtifactImportTest_TO_MIGRATE.php | +0 | −453 | Go to diff View file |
| M | src/common/include/SimpleSanitizer.class.php | +11 | −7 | Go to diff View file |