library-mirrors/jquery-ui
1
0
Fork 0
mirror of https://github.com/jquery/jquery-ui.git synced 2024-11-21 11:04:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4bae79d534
jquery-ui/tests/unit
History
Michał Gołębiowski-Owczarek 8cc5bae1ca
Checkboxradio: Don't re-evaluate text labels as HTML 
If you generate a Checkboxradio from a checkbox/radio with a label that
contains encoded HTML, e.g. `<em>test</em>` this will work fine
at first. If, however a refresh is triggered on that instance (explicitly or
e.g. by turning it into a `Controlgroup`), the previously escaped HTML will
now be evaluated.

If the label was created based on some user input, this could lead to
unexpected code execution even though the initial output was escaped.

Fixes gh-2101
Closes gh-2102
2022-07-14 20:52:02 +02:00
..
accordion Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
autocomplete Widget: Optimize attachment of the _untrackClassesElement listener 2022-01-15 01:26:23 +01:00
button Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
checkboxradio Checkboxradio: Don't re-evaluate text labels as HTML 2022-07-14 20:52:02 +02:00
controlgroup Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
core Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
datepicker Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
dialog Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
draggable Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
droppable Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
effects Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
form-reset-mixin Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
menu Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
position Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
progressbar Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
resizable Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
selectable Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
selectmenu Widget: Optimize attachment of the _untrackClassesElement listener 2022-01-15 01:26:23 +01:00
slider Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
sortable Sortable: Fix positioning when moving a Draggable item into a Sortable 2021-11-15 18:39:25 +01:00
spinner Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00
tabs Widget: Optimize attachment of the _untrackClassesElement listener 2022-01-15 01:26:23 +01:00
tooltip Tooltip: Don't crash on empty content 2021-11-08 11:53:45 +01:00
widget Widget: Make contextless widget construction work 2021-11-19 00:47:56 +01:00
all.html Tests: Only test latest patch versions for jQuery Core in TestSwarm 2016-07-08 12:51:44 -04:00
index.html Controlgroup: Inital commit of new widget 2015-10-07 10:57:59 -04:00
subsuite.js Build: Migrate from JSHint & JSCS to ESLint 2021-06-07 00:58:12 +02:00