library-mirrors/jquery-ui
1
0
Fork 0
mirror of https://github.com/jquery/jquery-ui.git synced 2024-10-05 01:44:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4bae79d534
jquery-ui/tests
History
Michał Gołębiowski-Owczarek 8cc5bae1ca
Checkboxradio: Don't re-evaluate text labels as HTML 
If you generate a Checkboxradio from a checkbox/radio with a label that
contains encoded HTML, e.g. `<em>test</em>` this will work fine
at first. If, however a refresh is triggered on that instance (explicitly or
e.g. by turning it into a `Controlgroup`), the previously escaped HTML will
now be evaluated.

If the label was created based on some user input, this could lead to
unexpected code execution even though the initial output was escaped.

Fixes gh-2101
Closes gh-2102
2022-07-14 20:52:02 +02:00
..
images All: Optimize png images losslessly using zopflipng 2016-06-06 11:26:06 -04:00
lib Tests: Take development jQuery versions from releases.jquery.com 2021-09-29 19:07:43 +02:00
unit Checkboxradio: Don't re-evaluate text labels as HTML 2022-07-14 20:52:02 +02:00
visual All: Remove deprecated .click() usage in demos/tests 2022-07-14 20:34:29 +02:00
.eslintrc.json Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
index.css Theme: Change default widget font-size to 1em 2014-10-24 07:23:31 -07:00
index.html Tests: Load the TestSwarm listener via HTTPS 2021-09-29 17:22:17 +02:00
index.js Tests: Style updates 2015-08-21 08:06:24 -04:00