Hi all,
An XSS issue has been discovered and fixed in the filebrowser_safe package.
You should be able to upgrade seamlessly right away (pip install -U
filebrowser_safe). In many areas throughout filebrowser, querystring
parameters are passed directly into templates to form URLS for links and
form
On 2/02/2016 1:51 AM, Joseph Mohan wrote:
Thanks, Going to dive in, Bit of an amateur so if I come up with
anything useful i'll put it up in the group for someone better to have
a look!!
Kristiyan Kastadinov forked filebrowser-safe a little while ago and
added HTML5 based uploading, removing
Hi Stephen, your change is working without problems. Thanks for fixing it,
although I feel al little uncertain, what my problem was. Will watch that
carefully ...
Christian
>
--
You received this message because you are subscribed to the Google Groups
"Mezzanine Users" group.
To unsubscribe
The BlogPost model is SiteRelated so it does have a site_id attribute
(BlogPost -> Displayable -> Slugged -> SiteRelated). Take a look at the
current_site_id function in mezzanine.utils.sites to see how it determines
which site is active. When BlogPost is saved, the site_id is set by that
funct
Thanks, Going to dive in, Bit of an amateur so if I come up with anything
useful i'll put it up in the group for someone better to have a look!!
Cheers. Joe
On Mon, Feb 1, 2016 at 3:07 PM, Eduardo Rivas
wrote:
> Nothing that I've personally tried, but it might be a good idea to look
> into how
Nothing that I've personally tried, but it might be a good idea to look
into how the upstream Filebrowser handles the uploads, since they are
now Flash-free.
Current upload template:
https://github.com/sehmaschine/django-filebrowser/blob/master/filebrowser/templates/filebrowser/upload.html
I
There's a tonne of stuff already in the issues but has anyone got a hack to
get around the flash button in the media library?
I can get to it using firefox on my ubuntu machine but clients are starting
to moan.
--
You received this message because you are subscribed to the Google Groups
"Mez
Thats the strange thing, my Site isn't importing the test code and i have
no model with foreign key to the user model. And everything worked great
until i upgraded to 4.1 (without changing anything else).
Will try your change, thanks
2016-02-01 1:13 GMT+01:00 Stephen McDonald :
> Do you have a mo