mealie

Mirrors/mealie

Fork 0

mirror of https://github.com/mealie-recipes/mealie.git synced 2025-10-30 17:53:31 -04:00

Commit Graph

Author	SHA1	Message	Date
Hayden	13850cda1f	security: multiple reported CVE fixes (#1515 ) * update out of date license * update typing / refactor * fix arbitrarty path injection * use markdown sanatizer to prevent XSS CWE-79 * fix CWE-918 SSRF by validating url and mime type * add security docs * update recipe-scrapers * resolve DOS from arbitrary url * update changelog * bump version * add ref to #1506 * add #1511 to changelog * use requests decoder * actually fix encoding issue	2022-07-31 13:10:20 -08:00

Author

SHA1

Message

Date

Hayden

13850cda1f

security: multiple reported CVE fixes (#1515 )

* update out of date license

* update typing / refactor

* fix arbitrarty path injection

* use markdown sanatizer to prevent XSS CWE-79

* fix CWE-918 SSRF by validating url and mime type

* add security docs

* update recipe-scrapers

* resolve DOS from arbitrary url

* update changelog

* bump version

* add ref to #1506

* add #1511 to changelog

* use requests decoder

* actually fix encoding issue

2022-07-31 13:10:20 -08:00

1 Commits