Custom Query (2152 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:


Results (1243 - 1245 of 2152)

Ticket Resolution Summary Owner Reporter
#1180 fixed Links in markdown can be badly formed dread dread

Reported by dread, 3 years ago.

Description

User can insert bad anchor tags into the User-About and Package-Notes fields and when you view them (web interface) it causes a 500 error.

Need to improve filtering for anchors in markdown.

<a href="http://xxxsex.com>nasty/website

Also check this related exception:

Module ckan.controllers.user:59 in read
<<          c.is_myself = user.name == c.user
               c.api_key = user.apikey
               c.about_formatted = self._format_about(user.about)
               revisions_q = model.Session.query(model.Revision
                       ).filter_by(author=user.name)
>>  c.about_formatted = self._format_about(user.about)
Module ckan.controllers.user:167 in _format_about
<<      def _format_about(self, about):
               about_formatted = ckan.misc.MarkdownFormat().to_html(about)
               return genshi.HTML(about_formatted) 
       
           def _get_form_password(self):
>>  return genshi.HTML(about_formatted)
WebApp Error: <class 'genshi.input.ParseError'>: junk characters in start tag: u'\u201dhttp://www.settingu': line 1, column 3
#809 wontfix Link to the Wiki pages in package form pudo

Reported by pudo, 3 years ago.

Description

This would allow for a community-driven definition of field values, conventions, etc.

Plus: create wiki.ckan.net

#1169 fixed Link to csv/json dumps on ckan.net dread dread
Note: See TracQuery for help on using queries.