edx-platform

Files

Julia Hansbrough f351b05031 Fixing email link injection bug

Several templates used a variable set by the user (the request host header).  This led to a vulnerability where an attacker could inject their domain name into these templates (i.e., activation emails).  This patch fixes this vulnerability.

LMS-532

2013-12-18 13:38:36 -05:00

management

mitxmako => edxmako

2013-12-03 14:15:09 -05:00

__init__.py

mitxmako => edxmako

2013-12-03 14:15:09 -05:00

makoloader.py

mitxmako => edxmako

2013-12-03 14:15:09 -05:00

middleware.py

Fixing email link injection bug

2013-12-18 13:38:36 -05:00

README

mitxmako => edxmako

2013-12-03 14:15:09 -05:00

shortcuts.py

MITX_ROOT_URL => EDX_ROOT_URL

2013-12-04 12:59:35 -05:00

startup.py

mitxmako => edxmako

2013-12-03 14:15:09 -05:00

template.py

MITX_ROOT_URL => EDX_ROOT_URL

2013-12-04 12:59:35 -05:00

templatetag_helpers.py

mitxmako => edxmako

2013-12-03 14:15:09 -05:00

tests.py

settings.MITX_FEATURES => settings.FEATURES

2013-12-03 15:34:55 -05:00

README

The code in this directory is based on:

    django-mako Copyright (c) 2008 Mikeal Rogers

and is redistributed here with modifications under the same Apache 2.0 license
as the orginal.


================================================================================
django-mako
================================================================================
This module provides a drop in replacement of Django templates for Mako 
Templates.

Django: http://www.djangoproject.com/
Mako: http://www.makotemplates.org/

================================================================================
How to install?
================================================================================

 $ sudo python setup.py install