Mercurial > p > roundup > code
view share/roundup/templates/devel/html/help.css @ 8365:4ac0bbb3e440
bug(security): CVE-2025-53865 - XSS bug
Extensive fixes in devel, responsive templates known to be
exploitable.
Similar constructs in classic and minimal templates not known
to be exploitable, but changed anyway.
doc/upgrading.txt:
Reformat to 66 characters.
Update with assigned CVE number.
Add section on fixing tal:replace with unsafe data.
Document analysis and assumptions in comment in file.
doc/security.txt:
Update with CVE number.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Fri, 11 Jul 2025 19:30:27 -0400 |
| parents | b419f29b1e2f |
| children |
line wrap: on
line source
@import url(style.css); body { padding: 0;} body > .header, body > .footer { margin: 0; } body .content { width: auto;} .header h1 { font-size: 110%; } table.classhelp th { border-top: 1px solid #afafaf; border-bottom: 1px solid #afafaf; empty-cells: show; text-align: left; vertical-align: middle; white-space: nowrap; } table.classhelp td { border-bottom: 1px solid #efefef; empty-cells: show; text-align: left; vertical-align: middle; white-space: nowrap; }