MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
MISP/app/View/Layouts
History
iglocska bf4610c947
fix: [security] setting a favourite homepage was not CSRF protected 
- a user could be lured into setting a MISP home-page outside of the MISP baseurl
- switched the endpoint to be CSRF protection enabled

- as discovered by Mislav Božičević <mislav.bozicevic@nn.cz>
 		2020-07-13 12:19:11 +02:00
..
Emails chg: [psr-2] Changed view files to space indentation instead of tabs 2018-07-20 09:29:50 +02:00
js Fix permissions 2016-02-11 17:03:51 +01:00
rss chg: [psr-2] Changed view files to space indentation instead of tabs 2018-07-20 09:29:50 +02:00
text chg: add newline character before EOF to non-minified (text-)files 2016-06-06 10:09:55 +02:00
xml Fix permissions 2016-02-11 17:03:51 +01:00
ajax.ctp Add css/js update script, update code accordingly 2016-06-06 16:24:23 +02:00
ajaxTemplate.ctp Revert last change, using the version of the CSS/JS does not work 2016-06-06 16:43:19 +02:00
dashboard.ctp new: [Dashboard] system 2020-03-01 18:05:21 +01:00
default.ctp fix: [security] setting a favourite homepage was not CSRF protected 2020-07-13 12:19:11 +02:00
error.ctp chg: [psr-2] Changed view files to space indentation instead of tabs 2018-07-20 09:29:50 +02:00
flash.ctp new: New flash message system, fixes #3252 2018-05-16 19:32:38 +02:00
graph.ctp chg: [psr-2] Changed view files to space indentation instead of tabs 2018-07-20 09:29:50 +02:00
iframe.ctp Move keyboard shortcuts from misp.js to its own file (to regain compatibility with IE11) 2018-03-01 17:27:42 -05:00
treemap.ctp chg: [psr-2] Changed view files to space indentation instead of tabs 2018-07-20 09:29:50 +02:00