Changesets: LimeSurvey
|
5.x a3355fd0 2024-06-21 16:24:33 Committer: GitHub Details Diff |
Fixed issue #19598: [security] No CSRF protection on userManagement (thanks to paoloelia) (03881) |
Affected Issues 19598 |
|
| mod - application/controllers/UserManagementController.php | Diff File | ||
|
5.x a3355fd0 2024-06-21 16:24:33 Committer: GitHub Details Diff |
Fixed issue #19598: [security] No CSRF protection on userManagement (thanks to paoloelia) (03881) |
Affected Issues 19598 |
|
| mod - application/controllers/UserManagementController.php | Diff File | ||
|
master 5ecaa39e 2024-06-21 15:21:51 Committer: GitHub Details Diff |
Fixed issue #19599: [security] Stored XSS through csv file upload (thanks to paoloelia ) (03882) |
Affected Issues 19599 |
|
| mod - application/models/UserParser.php | Diff File | ||
|
master 5ecaa39e 2024-06-21 15:21:51 Committer: GitHub Details Diff |
Fixed issue #19599: [security] Stored XSS through csv file upload (thanks to paoloelia ) (03882) |
Affected Issues 19599 |
|
| mod - application/models/UserParser.php | Diff File | ||
|
master 43c49605 2024-06-19 12:57:33 Committer: GitHub Details Diff |
Fixed issue #19598: [security] No CSRF protection on userManagement (thanks to paoloelia) (03880) |
Affected Issues 19598 |
|
| mod - application/controllers/UserManagementController.php | Diff File | ||
|
master 9e7b55fe 2024-06-17 19:03:24 Details Diff |
Dev: core themes should never be checked for validity and in the process be uninstalled | ||
| mod - application/models/Template.php | Diff File | ||
| mod - application/models/TemplateConfiguration.php | Diff File | ||
|
master 5d4b03fc 2024-06-17 11:30:53 Details Diff |
Release 6.5.13+240617 | ||
| mod - application/config/version.php | Diff File | ||
| mod - docs/release_notes.txt | Diff File | ||
|
master 1d293f9a 2024-06-17 11:28:17 LimeSurvey Translations Bot Details Diff |
Updated translation: Finnish by Jmantysalo Updated translation: Japanese by d_inoue Updated translation: Korean by modernity4r Updated translation: Czech (Informal) by jelen1 |
||
| mod - locale/_template/limesurvey.pot | Diff File | ||
| mod - locale/cs-informal/cs-informal.mo | Diff File | ||
| mod - locale/fi/fi.mo | Diff File | ||
| mod - locale/ja/ja.mo | Diff File | ||
| mod - locale/ko/ko.mo | Diff File | ||
|
master f529dfb1 2024-06-13 13:35:17 Kevin Foster Details Diff |
Dev: REST API Access-Control-Allow-Headers explicitly allows Authorization | ||
| mod - application/libraries/Api/Rest/Renderer/RendererBasic.php | Diff File | ||
|
master f9f0d993 2024-06-13 11:39:08 Kevin Foster Details Diff |
Dev: REST API Access-Control-Allow-Headers explicitly allows Authorization | ||
| mod - application/libraries/Api/Rest/Renderer/RendererBasic.php | Diff File | ||
|
master d7fce274 2024-06-12 16:32:13 Committer: GitHub Details Diff |
Fixed issue #CR-1426: custom.css in survey themes and files_css not loaded correctly when using a theme variation (03876) | ||
| mod - application/controllers/SurveyAdministrationController.php | Diff File | ||
| mod - application/controllers/ThemeOptionsController.php | Diff File | ||
| mod - application/controllers/admin/PluginHelper.php | Diff File | ||
| mod - application/helpers/frontend_helper.php | Diff File | ||
| mod - application/models/TemplateConfiguration.php | Diff File | ||
| mod - application/views/admin/SurveyFiles/surveyview.php | Diff File | ||
| mod - application/views/admin/conditions/conditionshead_view.php | Diff File | ||
| mod - application/views/admin/dataentry/caption_view.php | Diff File | ||
| mod - application/views/admin/dataentry/dataentry_header_view.php | Diff File | ||
| mod - application/views/admin/dataentry/import.php | Diff File | ||
| mod - application/views/admin/dataentry/insert.php | Diff File | ||
| mod - application/views/admin/dataentry/iteratesurvey.php | Diff File | ||
| mod - application/views/admin/dataentry/vvimport.php | Diff File | ||
| mod - application/views/admin/emailtemplates/emailtemplates_view.php | Diff File | ||
| mod - application/views/admin/export/exportresults_view.php | Diff File | ||
| mod - application/views/admin/export/spss_view.php | Diff File | ||
| mod - application/views/admin/export/statistics_user_view.php | Diff File | ||
| mod - application/views/admin/export/statistics_view.php | Diff File | ||
| mod - application/views/admin/export/vv_view.php | Diff File | ||
| mod - application/views/admin/expressions/test/survey_logic_file.php | Diff File | ||
| mod - application/views/admin/expressions/test/survey_logic_form.php | Diff File | ||
| mod - application/views/admin/saved/savedlist_view.php | Diff File | ||
| mod - application/views/admin/super/messagebox.php | Diff File | ||
| mod - application/views/admin/super/sidebody.php | Diff File | ||
| mod - application/views/admin/survey/organizeGroupsAndQuestions_view.php | Diff File | ||
| mod - application/views/admin/survey/queXMLSurvey_view.php | Diff File | ||
| mod - application/views/admin/token/addtokenpost.php | Diff File | ||
| mod - application/views/admin/token/afterDeleteParticipantsTable.php | Diff File | ||
| mod - application/views/admin/token/bounce.php | Diff File | ||
| mod - application/views/admin/token/browse.php | Diff File | ||
| mod - application/views/admin/token/csvimportresult.php | Diff File | ||
| mod - application/views/admin/token/csvupload.php | Diff File | ||
| mod - application/views/admin/token/deleteParticipantsTable.php | Diff File | ||
| mod - application/views/admin/token/dummytokenform.php | Diff File | ||
| mod - application/views/admin/token/emailpost.php | Diff File | ||
| mod - application/views/admin/token/emailwarning.php | Diff File | ||
| mod - application/views/admin/token/exportdialog.php | Diff File | ||
| mod - application/views/admin/token/import.php | Diff File | ||
| mod - application/views/admin/token/invite.php | Diff File | ||
| mod - application/views/admin/token/ldapform.php | Diff File | ||
| mod - application/views/admin/token/ldappost.php | Diff File | ||
| mod - application/views/admin/token/managetokenattributes.php | Diff File | ||
| mod - application/views/admin/token/remind.php | Diff File | ||
| mod - application/views/admin/token/surveyParticipantView.php | Diff File | ||
| mod - application/views/admin/token/tokenform.php | Diff File | ||
| mod - application/views/admin/token/tokenwarning.php | Diff File | ||
| mod - application/views/assessment/assessments_view.php | Diff File | ||
| mod - application/views/failedEmail/failedEmail_index.php | Diff File | ||
| mod - application/views/layouts/messagebox.php | Diff File | ||
| mod - application/views/questionAdministration/copyQuestionForm.php | Diff File | ||
| mod - application/views/questionAdministration/editdefaultvalues.php | Diff File | ||
| mod - application/views/questionAdministration/import.php | Diff File | ||
| mod - application/views/questionAdministration/importQuestion.php | Diff File | ||
| mod - application/views/questionAdministration/listquestions.php | Diff File | ||
| mod - application/views/questionAdministration/partial/groupView.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/addGroup_view.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/editGroup_view.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/group_view.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/importGroup_view.php | Diff File | ||
| mod - application/views/quickTranslation/index.php | Diff File | ||
| mod - application/views/quotas/editquota_view.php | Diff File | ||
| mod - application/views/quotas/index.php | Diff File | ||
| mod - application/views/quotas/newanswer_view.php | Diff File | ||
| mod - application/views/quotas/newanswertwo_view.php | Diff File | ||
| mod - application/views/quotas/newquota_view.php | Diff File | ||
| mod - application/views/responses/browseidrow_view.php | Diff File | ||
| mod - application/views/responses/browseindex_view.php | Diff File | ||
| mod - application/views/responses/browsetimerow_view.php | Diff File | ||
| mod - application/views/responses/partial/responseListTable.php | Diff File | ||
| mod - application/views/surveyAdministration/activateSurvey.php | Diff File | ||
| mod - application/views/surveyAdministration/deactivateSurvey_view.php | Diff File | ||
| mod - application/views/surveyAdministration/deleteSurvey_view.php | Diff File | ||
| mod - application/views/surveyAdministration/importSurveyResources_view.php | Diff File | ||
| mod - application/views/surveyAdministration/sidebody.php | Diff File | ||
| mod - application/views/surveyAdministration/stopSurvey_view.php | Diff File | ||
| mod - application/views/surveyAdministration/surveyActivation/_activation_feedback.php | Diff File | ||
| mod - application/views/surveyPermissions/index.php | Diff File | ||
| mod - application/views/surveyPermissions/settingsPermission.php | Diff File | ||
| mod - application/views/themeOptions/advanced.php | Diff File | ||
| mod - application/views/themeOptions/options_core.php | Diff File | ||
| mod - application/views/themeOptions/update.php | Diff File | ||
| mod - assets/packages/themeoptions-core/themeoptions-core.js | Diff File | ||
| mod - themes/survey/bootswatch/options/options.js | Diff File | ||
| mod - themes/survey/bootswatch/options/options.twig | Diff File | ||
| mod - themes/survey/fruity/options/options.js | Diff File | ||
| mod - themes/survey/fruity/options/options.twig | Diff File | ||
| mod - themes/survey/fruity_twentythree/options/options.js | Diff File | ||
| mod - themes/survey/fruity_twentythree/options/options.twig | Diff File | ||
| mod - themes/survey/vanilla/options/options.js | Diff File | ||
| mod - themes/survey/vanilla/options/options.twig | Diff File | ||
|
master d7fce274 2024-06-12 16:32:13 Committer: GitHub Details Diff |
Fixed issue #CR-1426: custom.css in survey themes and files_css not loaded correctly when using a theme variation (03876) | ||
| mod - application/controllers/SurveyAdministrationController.php | Diff File | ||
| mod - application/controllers/ThemeOptionsController.php | Diff File | ||
| mod - application/controllers/admin/PluginHelper.php | Diff File | ||
| mod - application/helpers/frontend_helper.php | Diff File | ||
| mod - application/models/TemplateConfiguration.php | Diff File | ||
| mod - application/views/admin/SurveyFiles/surveyview.php | Diff File | ||
| mod - application/views/admin/conditions/conditionshead_view.php | Diff File | ||
| mod - application/views/admin/dataentry/caption_view.php | Diff File | ||
| mod - application/views/admin/dataentry/dataentry_header_view.php | Diff File | ||
| mod - application/views/admin/dataentry/import.php | Diff File | ||
| mod - application/views/admin/dataentry/insert.php | Diff File | ||
| mod - application/views/admin/dataentry/iteratesurvey.php | Diff File | ||
| mod - application/views/admin/dataentry/vvimport.php | Diff File | ||
| mod - application/views/admin/emailtemplates/emailtemplates_view.php | Diff File | ||
| mod - application/views/admin/export/exportresults_view.php | Diff File | ||
| mod - application/views/admin/export/spss_view.php | Diff File | ||
| mod - application/views/admin/export/statistics_user_view.php | Diff File | ||
| mod - application/views/admin/export/statistics_view.php | Diff File | ||
| mod - application/views/admin/export/vv_view.php | Diff File | ||
| mod - application/views/admin/expressions/test/survey_logic_file.php | Diff File | ||
| mod - application/views/admin/expressions/test/survey_logic_form.php | Diff File | ||
| mod - application/views/admin/saved/savedlist_view.php | Diff File | ||
| mod - application/views/admin/super/messagebox.php | Diff File | ||
| mod - application/views/admin/super/sidebody.php | Diff File | ||
| mod - application/views/admin/survey/organizeGroupsAndQuestions_view.php | Diff File | ||
| mod - application/views/admin/survey/queXMLSurvey_view.php | Diff File | ||
| mod - application/views/admin/token/addtokenpost.php | Diff File | ||
| mod - application/views/admin/token/afterDeleteParticipantsTable.php | Diff File | ||
| mod - application/views/admin/token/bounce.php | Diff File | ||
| mod - application/views/admin/token/browse.php | Diff File | ||
| mod - application/views/admin/token/csvimportresult.php | Diff File | ||
| mod - application/views/admin/token/csvupload.php | Diff File | ||
| mod - application/views/admin/token/deleteParticipantsTable.php | Diff File | ||
| mod - application/views/admin/token/dummytokenform.php | Diff File | ||
| mod - application/views/admin/token/emailpost.php | Diff File | ||
| mod - application/views/admin/token/emailwarning.php | Diff File | ||
| mod - application/views/admin/token/exportdialog.php | Diff File | ||
| mod - application/views/admin/token/import.php | Diff File | ||
| mod - application/views/admin/token/invite.php | Diff File | ||
| mod - application/views/admin/token/ldapform.php | Diff File | ||
| mod - application/views/admin/token/ldappost.php | Diff File | ||
| mod - application/views/admin/token/managetokenattributes.php | Diff File | ||
| mod - application/views/admin/token/remind.php | Diff File | ||
| mod - application/views/admin/token/surveyParticipantView.php | Diff File | ||
| mod - application/views/admin/token/tokenform.php | Diff File | ||
| mod - application/views/admin/token/tokenwarning.php | Diff File | ||
| mod - application/views/assessment/assessments_view.php | Diff File | ||
| mod - application/views/failedEmail/failedEmail_index.php | Diff File | ||
| mod - application/views/layouts/messagebox.php | Diff File | ||
| mod - application/views/questionAdministration/copyQuestionForm.php | Diff File | ||
| mod - application/views/questionAdministration/editdefaultvalues.php | Diff File | ||
| mod - application/views/questionAdministration/import.php | Diff File | ||
| mod - application/views/questionAdministration/importQuestion.php | Diff File | ||
| mod - application/views/questionAdministration/listquestions.php | Diff File | ||
| mod - application/views/questionAdministration/partial/groupView.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/addGroup_view.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/editGroup_view.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/group_view.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/importGroup_view.php | Diff File | ||
| mod - application/views/quickTranslation/index.php | Diff File | ||
| mod - application/views/quotas/editquota_view.php | Diff File | ||
| mod - application/views/quotas/index.php | Diff File | ||
| mod - application/views/quotas/newanswer_view.php | Diff File | ||
| mod - application/views/quotas/newanswertwo_view.php | Diff File | ||
| mod - application/views/quotas/newquota_view.php | Diff File | ||
| mod - application/views/responses/browseidrow_view.php | Diff File | ||
| mod - application/views/responses/browseindex_view.php | Diff File | ||
| mod - application/views/responses/browsetimerow_view.php | Diff File | ||
| mod - application/views/responses/partial/responseListTable.php | Diff File | ||
| mod - application/views/surveyAdministration/activateSurvey.php | Diff File | ||
| mod - application/views/surveyAdministration/deactivateSurvey_view.php | Diff File | ||
| mod - application/views/surveyAdministration/deleteSurvey_view.php | Diff File | ||
| mod - application/views/surveyAdministration/importSurveyResources_view.php | Diff File | ||
| mod - application/views/surveyAdministration/sidebody.php | Diff File | ||
| mod - application/views/surveyAdministration/stopSurvey_view.php | Diff File | ||
| mod - application/views/surveyAdministration/surveyActivation/_activation_feedback.php | Diff File | ||
| mod - application/views/surveyPermissions/index.php | Diff File | ||
| mod - application/views/surveyPermissions/settingsPermission.php | Diff File | ||
| mod - application/views/themeOptions/advanced.php | Diff File | ||
| mod - application/views/themeOptions/options_core.php | Diff File | ||
| mod - application/views/themeOptions/update.php | Diff File | ||
| mod - assets/packages/themeoptions-core/themeoptions-core.js | Diff File | ||
| mod - themes/survey/bootswatch/options/options.js | Diff File | ||
| mod - themes/survey/bootswatch/options/options.twig | Diff File | ||
| mod - themes/survey/fruity/options/options.js | Diff File | ||
| mod - themes/survey/fruity/options/options.twig | Diff File | ||
| mod - themes/survey/fruity_twentythree/options/options.js | Diff File | ||
| mod - themes/survey/fruity_twentythree/options/options.twig | Diff File | ||
| mod - themes/survey/vanilla/options/options.js | Diff File | ||
| mod - themes/survey/vanilla/options/options.twig | Diff File | ||
|
5.x 31f03d05 2024-06-11 16:40:40 Details Diff |
Release 5.6.67+240612 | ||
| mod - application/config/version.php | Diff File | ||
| mod - docs/release_notes.txt | Diff File | ||
|
master cccf43f6 2024-06-11 16:35:58 Details Diff |
Release 6.5.12+240611 | ||
| mod - application/config/version.php | Diff File | ||
| mod - docs/release_notes.txt | Diff File | ||
|
master 45bb844a 2024-06-11 12:10:44 K Foster Committer: GitHub Details Diff |
Dev: REST API template curl request requires session cookie (03875) * Dev: REST API template curl request requires session cookie * Dev: Code format fixes |
||
| mod - application/libraries/Api/Command/V1/SurveyTemplate.php | Diff File | ||
|
master 599dcbc0 2024-06-10 15:35:47 Details Diff |
Dev: code syntax check fix...again | ||
| mod - application/libraries/Api/Command/V1/SurveyTemplate.php | Diff File | ||
|
master a49beeac 2024-06-10 14:58:45 Kevin Foster Details Diff |
Dev: Fix REST API survey template permissions check and add comments | ||
| mod - application/libraries/Api/Command/V1/SurveyTemplate.php | Diff File | ||
|
master 1d4e36b8 2024-06-10 14:10:50 Kevin Foster Details Diff |
Dev: code syntax check fix | ||
| mod - application/libraries/Api/Command/V1/SurveyTemplate.php | Diff File | ||
|
master de8d2bb9 2024-06-10 13:52:42 Kevin Foster Details Diff |
Dev: code syntax check fix | ||
| mod - application/libraries/Api/Command/V1/SurveyTemplate.php | Diff File | ||
|
master 3c66a694 2024-06-10 12:42:36 Details Diff |
Dev: code syntax check fix | ||
| mod - application/libraries/Api/Command/V1/SurveyTemplate.php | Diff File | ||
|
5.x 33a3cb61 2024-06-10 12:30:56 LimeSurvey Translations Bot Details Diff |
Dev Automatic translation update | ||
| mod - locale/_template/limesurvey.pot | Diff File | ||
|
master 03b0bf74 2024-06-10 12:30:46 LimeSurvey Translations Bot Details Diff |
Updated translation: Czech by jelen1 Updated translation: Japanese by nomoto Updated translation: Korean by modernity4r Updated translation: Slovak by jelen1 Updated translation: Czech (Informal) by jelen1 |
||
| mod - locale/_template/limesurvey.pot | Diff File | ||
| mod - locale/cs-informal/cs-informal.mo | Diff File | ||
| mod - locale/cs/cs.mo | Diff File | ||
| mod - locale/ja/ja.mo | Diff File | ||
| mod - locale/ko/ko.mo | Diff File | ||
| mod - locale/sk/sk.mo | Diff File | ||
|
master c844c4fb 2024-06-10 11:31:15 Gabriel Jenik Committer: GitHub Details Diff |
Fixed issue #19457: [security] Stored Cross-Site Scripting (XSS) in file upload question (03874) Co-authored-by: lapiudevgit <devgit@lapiu.biz> |
Affected Issues 19457 |
|
| mod - assets/packages/questions/upload/build/uploadquestion.js | Diff File | ||
| mod - assets/packages/questions/upload/build/uploadquestion.min.js | Diff File | ||
| mod - assets/packages/questions/upload/build/uploadquestion.min.js.map | Diff File | ||
| mod - assets/packages/questions/upload/src/modaldialog.js | Diff File | ||
|
master c844c4fb 2024-06-10 11:31:15 Gabriel Jenik Committer: GitHub Details Diff |
Fixed issue #19457: [security] Stored Cross-Site Scripting (XSS) in file upload question (03874) Co-authored-by: lapiudevgit <devgit@lapiu.biz> |
Affected Issues 19457 |
|
| mod - assets/packages/questions/upload/build/uploadquestion.js | Diff File | ||
| mod - assets/packages/questions/upload/build/uploadquestion.min.js | Diff File | ||
| mod - assets/packages/questions/upload/build/uploadquestion.min.js.map | Diff File | ||
| mod - assets/packages/questions/upload/src/modaldialog.js | Diff File | ||
|
5.x 21403de8 2024-06-07 13:06:56 Committer: GitHub Details Diff |
Fixed issue 19501: Upgrade broke at 430 with ComfortUpdateChecker (#3803) |
Affected Issues 19501 |
|
| mod - application/helpers/update/updates/Update_430.php | Diff File | ||
