root
/
gitlab-ce
mirror of https://gitlab.com/free-releases/gitlab-ce.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
gitlab-ce/lib/gitlab/template/finders
History
Nick Thomas 69645389e9
Prevent a path traversal attack on global file templates 
The API permits path traversal characters like '../' to be passed down
to the template finder. Detect these requests and cause them to fail
with a 500 response code.
 		2018-12-05 14:12:35 +00:00
..
base_template_finder.rb Enable even more frozen string for lib/gitlab 2018-11-19 18:24:22 -08:00
global_template_finder.rb Prevent a path traversal attack on global file templates 2018-12-05 14:12:35 +00:00
repo_template_finder.rb Prevent a path traversal attack on global file templates 2018-12-05 14:12:35 +00:00