diff options
| author | Robert Speicher <robert@gitlab.com> | 2017-05-03 14:28:46 +0000 |
|---|---|---|
| committer | Bob Van Landuyt <bob@gitlab.com> | 2017-05-10 16:48:18 +0200 |
| commit | 576e244b6c017dcda2d2d848670ec3b60db63409 (patch) | |
| tree | aa1aea5fffb47a21cf53af39be897501fcbf512c | |
| parent | 61a81a3ac225296f8aefc4d2f350de72a531bf3d (diff) | |
| download | gitlab-ce-576e244b6c017dcda2d2d848670ec3b60db63409.tar.gz | |
Merge branch 'branch-name-escape' into 'security'
Fix XSS in branches dropdown
See merge request !2093
| -rw-r--r-- | changelogs/unreleased/branch-name-escape.yml | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/changelogs/unreleased/branch-name-escape.yml b/changelogs/unreleased/branch-name-escape.yml new file mode 100644 index 00000000000..bf46235fd79 --- /dev/null +++ b/changelogs/unreleased/branch-name-escape.yml @@ -0,0 +1,4 @@ +--- +title: Fixed branches dropdown rendering branch names as HTML +merge_request: +author: |