Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2025-12-16 15:30:13 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
wekan/server
History
Lauri Ojansivu ccd9034339 Fix SECURITY ISSUE 5: Attachment API uses bearer value as userId and DoS (Low). 
Thanks to Siam Thanat Hack (STH) and xet7 !
2025-11-02 11:42:07 +02:00
..
lib Fix SECURITY ISSUE 5: Attachment API uses bearer value as userId and DoS (Low). 2025-11-02 11:42:07 +02:00
methods Fix Regression - unable to view cards by due date v8.11. 2025-10-22 23:31:36 +03:00
migrations Some migrations and mobile fixes. 2025-10-25 21:09:07 +03:00
notifications Add email notifications language localization feature 2025-05-13 19:45:08 +01:00
publications Fix Regression - unable to view cards by due date v8.11. 2025-10-22 23:31:36 +03:00
routes Fix SECURITY ISSUE 5: Attachment API uses bearer value as userId and DoS (Low). 2025-11-02 11:42:07 +02:00
00checkStartup.js Some migrations and mobile fixes. 2025-10-25 21:09:07 +03:00
accounts-common.js Account configuration of option loginExpirationInDays is now possible 2021-11-15 14:21:09 +01:00
accounts-lockout-config.js Feature: Added brute force login protection settings to Admin Panel/People/Locked Users. 2025-08-05 00:31:43 +03:00
attachmentApi.js Added attachments API and admin panel attachment management for file storage backends settings. Fixed drag drop upload attachments from file manager to minicard or opened card. 2025-10-11 11:05:46 +03:00
attachmentMigration.js Fixed migrations. 2025-10-14 01:30:59 +03:00
authentication.js Fix in API user role is not considered. 2024-12-08 02:56:37 +02:00
boardMigrationDetector.js Prevent opened board re-migrating and reloading every 5 seconds. 2025-10-21 14:12:12 +03:00
card-opened-webhook.js Fix Card Opened Webhook can not be disabled. 2020-02-13 14:58:19 +02:00
cors.js Fix SECURITY ISSUE 2: Access to boards of any Orgs/Teams, and avatar permissions. 2025-11-02 09:11:50 +02:00
cronJobStorage.js Fix migrations. 2025-10-20 01:20:28 +03:00
cronMigrationManager.js Prevent opened board re-migrating and reloading every 5 seconds. 2025-10-21 14:12:12 +03:00
header-login.js Fix avatar upload error 2022-10-06 15:12:12 +08:00
max-image-pixel.js Add env setting to image resizer, part 1. 2019-07-18 04:27:03 +03:00
max-size.js Add some info about allowed filesizes and filetypes for attachments and avatars. 2023-03-26 12:41:44 +03:00
mongodb-driver-startup.js Fixes to make board showing correctly. 2025-10-12 03:48:21 +03:00
policy.js Removed browser contect policy so that attachments would be visible. Part 2. 2022-04-08 18:37:51 +03:00
richer-editor-setting-helper.js Revert: Fix Pasting text into a card is adding a line before and after 2020-03-23 22:23:31 +02:00
rulesHelper.js Add email notifications language localization feature 2025-05-13 19:45:08 +01:00
saml.js Added some CAS and SAML settings. Not tested. Please test and send pull requests if it does not work. 2020-09-14 19:57:50 +03:00
spinner.js -conflits resolve 2021-06-14 15:11:21 +02:00
statistics.js Move every Meteor.user() to the ReactiveCache 2023-07-18 21:25:28 +02:00
triggersDef.js Prettier & eslint project style update 2019-06-28 12:56:51 -05:00