innov
/
django1
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
django1/django/template
History
Tim Graham 7fe5b656c9 Prevented arbitrary file inclusion with {% ssi %} tag and relative paths. 
Thanks Rainer Koirikivi for the report and draft patch.

This is a security fix; disclosure to follow shortly.
 		2013-09-10 21:02:48 -04:00
..
loaders Replaced "not PY3" by "PY2", new in six 1.4.0. 2013-09-02 12:11:02 +02:00
__init__.py Fixed #12248 -- Refactored django.template to get code out of __init__.py, to help with avoiding circular import dependencies. Thanks to Tom Tobin for the patch. 2010-11-27 05:47:30 +00:00
base.py Fixed #20841 -- Added messages to NotImplementedErrors 2013-09-10 11:09:59 -04:00
context.py Fixed #7116 -- Optimize RequestContext construction 2013-08-29 10:25:56 +03:00
debug.py Fixed #19819 - Improved template filter errors handling. 2013-02-14 10:22:59 +01:00
defaultfilters.py Removed several unused imports. 2013-06-19 17:18:40 +02:00
defaulttags.py Prevented arbitrary file inclusion with {% ssi %} tag and relative paths. 2013-09-10 21:02:48 -04:00
loader.py Fixed #20841 -- Added messages to NotImplementedErrors 2013-09-10 11:09:59 -04:00
loader_tags.py Fixed #20989 -- Removed useless explicit list comprehensions. 2013-08-30 10:57:51 -04:00
response.py Removed 'mimetype' arguments from a few places, as per deprecation TL. 2013-06-28 21:48:16 -03:00
smartif.py IfParser.next() method renamed to avoid confusion with iterator protocol. 2012-06-14 23:12:15 +01:00