Tim Graham
|
46e2b9e059
|
Fixed CVE-2017-12794 -- Fixed XSS possibility in traceback section of technical 500 debug page.
This is a security fix.
|
2017-09-05 10:58:38 -04:00 |
Allen, Timothy
|
9229e005aa
|
Django -> django when styled as a logo with font. This was pointed out at DjangoCon US.
|
2017-08-21 08:00:54 +02:00 |
Timothy Allen
|
5fe9b7b40a
|
Fixed #28457 -- Updated the design of the 'Congrats' page for new Django projects.
Developed by Timothy Allen and Chad Whitman of The Wharton School with
shepherding from Aymeric Augustin and Collin Anderson.
|
2017-08-07 10:33:55 -04:00 |
|
Tim Graham
|
293608a2e0
|
Refs #7697 -- Removed unnecessary force_escape of technical 500 debug view "unicode hint".
The test passes before and after the removal. unicode_hint will never
be SafeText, so normal autoescaping is sufficient.
|
2017-08-02 15:16:22 -04:00 |
|
Tim Graham
|
8df7681d0e
|
Removed unneeded escape filter in templates where autoescaping is enabled.
|
2017-08-01 10:52:29 -04:00 |
Abhishek Gautam
|
941b869135
|
Fixed #28008 -- Replaced getElementsByClassName() JavaScript in debug view template.
|
2017-04-14 08:12:14 -04:00 |
Claude Paroz
|
ea542a9c72
|
Fixed #28007 -- Moved debug templates to the filesystem
Thanks Tim Graham for the review.
|
2017-04-12 11:36:47 -04:00 |