Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2025-12-16 07:20:12 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
wekan/server/routes
History
Exact
Lauri Ojansivu ccd9034339 Fix SECURITY ISSUE 5: Attachment API uses bearer value as userId and DoS (Low). 
Thanks to Siam Thanat Hack (STH) and xet7 !
2025-11-02 11:42:07 +02:00
..
attachmentApi.js Fix SECURITY ISSUE 5: Attachment API uses bearer value as userId and DoS (Low). 2025-11-02 11:42:07 +02:00
avatarServer.js Some migrations and mobile fixes. 2025-10-25 21:09:07 +03:00
legacyAttachments.js Security Fix JVN#74210258: Stored XSS. 2025-10-10 23:06:06 +03:00
universalFileServer.js Fix SECURITY ISSUE 2: Access to boards of any Orgs/Teams, and avatar permissions. 2025-11-02 09:11:50 +02:00