mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-04-06 14:36:41 +00:00
Code Issues 32 Releases Wiki Activity
django/django
History
Tim Graham 7fe5b656c9 Prevented arbitrary file inclusion with {% ssi %} tag and relative paths. 
Thanks Rainer Koirikivi for the report and draft patch.

This is a security fix; disclosure to follow shortly.
2013-09-10 21:02:48 -04:00
..
bin
Removed daily_cleanup.py script as per deprecation TL.
2013-06-28 21:48:16 -03:00
conf
Set 'bidi' Urdu property to True
2013-08-30 12:03:39 +02:00
contrib
Fixed #20841 -- Added messages to NotImplementedErrors
2013-09-10 11:09:59 -04:00
core
Fixed #20841 -- Added messages to NotImplementedErrors
2013-09-10 11:09:59 -04:00
db
Fixed #20841 -- Added messages to NotImplementedErrors
2013-09-10 11:09:59 -04:00
dispatch
Fixed #20943 -- Weakly reference senders when caching their associated receivers
2013-08-21 22:30:45 +01:00
forms
Improved deprecation warning for change in form boolean values.
2013-09-10 14:24:34 -04:00
http
Fixed #18403 -- Initialized bad_cookies in SimpleCookie
2013-09-10 08:26:54 -04:00
middleware
Deprecated SortedDict (replaced with collections.OrderedDict)
2013-08-04 07:09:39 -04:00
shortcuts
More import removals
2013-06-29 11:58:36 +02:00
template
Prevented arbitrary file inclusion with {% ssi %} tag and relative paths.
2013-09-10 21:02:48 -04:00
templatetags
Took advantage of django.utils.six.moves.urllib.*.
2013-09-05 14:39:23 -05:00
test
Fixed #20919 -- Extended assertRedirects to be able to avoid fetching redirect's response.
2013-09-10 12:22:55 -04:00
utils
Fixed #20841 -- Added messages to NotImplementedErrors
2013-09-10 11:09:59 -04:00
views
Merge pull request #1580 from ianawilson/ticket_16502
2013-09-06 15:31:25 -07:00
__init__.py
Master is now pre-1.7.
2013-06-28 08:56:45 -05:00