TinyTinyRSS for BananaNetwork - to apply required patches before release or release in async to the official version https://git.tt-rss.org/fox/tt-rss
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 
Go to file
Andrew Dolgov 3891782cf5 Merge branch 'fix-target-blank-vulnerability' into 'master'
Prevent target='_blank' vulnerability on dynamic link

This merge request refere to https://tt-rss.org/forum/viewtopic.php?f=8&t=4048

It fix the issue I enconter on some feeds I follow.
Just need to add "noopener" and "noreferrer" on "_blank" link to avoid the vulnerability.

See merge request !46
8 years ago
api api host: add session validation 8 years ago
cache remove .htaccess files 9 years ago
classes Prevent target='_blank' vulnerability on dynamic link 8 years ago
css pass several image files used in notify messages to frontend as base64 to prevent broken error messages in case network connection is down. also, update some close buttons to show correct cursor. 8 years ago
feed-icons
images
include Prevent target='_blank' vulnerability on dynamic link 8 years ago
install Merge branch 'subscribe-idn-feed' into 'master' 8 years ago
js pass several image files used in notify messages to frontend as base64 to prevent broken error messages in case network connection is down. also, update some close buttons to show correct cursor. 8 years ago
lib lib: Upgrade timezones.txt from 2010k/l/m/n/2011a to 2016j 8 years ago
locale Updated german translation 8 years ago
lock remove .htaccess files 9 years ago
plugins Prevent target='_blank' vulnerability on dynamic link 8 years ago
plugins.local
schema update schema 128 to properly set ttrss_feeds.last_updated default value to NULL 8 years ago
templates remove .htaccess files 9 years ago
themes compact.css: remove version tag 8 years ago
themes.local support loading themes from themes.local 10 years ago
utils remove .htaccess files 9 years ago
.gitignore update gitignore 10 years ago
README.md put gpl boilerplate back 9 years ago
atom-to-html.xsl
backend.php update intervals: use less broken english for a change 10 years ago
config.php-dist deprecate encrypted feed passwords because mcrypt is getting removed from php 7.1 8 years ago
errors.php
index.php handle_rpc_json: fix netalert button never appearing on JSON parse error 8 years ago
messages.pot rebase translations 8 years ago
opml.php
prefs.php implement cache-busting for default theme.css 8 years ago
public.php
register.php
update.php deprecate encrypted feed passwords because mcrypt is getting removed from php 7.1 8 years ago
update_daemon2.php

README.md

Tiny Tiny RSS

Web-based news feed aggregator, designed to allow you to read news from any location, while feeling as close to a real desktop application as possible.

http://tt-rss.org

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see http://www.gnu.org/licenses/.

Copyright (c) 2005 Andrew Dolgov (unless explicitly stated otherwise).

Uses Silk icons by Mark James: http://www.famfamfam.com/lab/icons/silk/