External/netbox
1
0
Fork 0
mirror of https://github.com/netbox-community/netbox.git synced 2025-12-18 02:06:22 +00:00
Code Issues Packages Projects Releases Wiki Activity
netbox/netbox
History
Jason Novinger 2c09973e01 Fixes #20009: Fix DOM-based XSS vulnerability in search export functionality 
Replace direct string concatenation with URLSearchParams to properly
encode user input in export link URLs, preventing injection of malicious
parameters or scripts through the search functionality.

Resolves CodeQL Alert #63 (js/xss-through-dom)
2025-08-04 09:12:49 -04:00
..
account
Apply fix to user view as well
2025-06-03 08:58:16 -04:00
circuits
19644 Make atomic use correct database instead of default (#19651)
2025-06-25 15:00:26 -04:00
core
Closes #18399: Refactor logic for marking data source syncing as queued (#19960)
2025-07-28 09:04:38 -07:00
dcim
Closes #19977: Denormalize device relationships on component models (#19984)
2025-08-01 15:40:15 -05:00
extras
Fixes #18900: raise QuerySetNotOrdered exception when trying to paginate unordered API querysets (#19943)
2025-07-29 11:49:36 -05:00
ipam
Closes #18811: Match full-form IPv6 addresses in global search (#19873)
2025-07-14 09:28:30 -05:00
media
netbox
Fixes #18900: raise QuerySetNotOrdered exception when trying to paginate unordered API querysets (#19943)
2025-07-29 11:49:36 -05:00
project-static
Fixes #20009: Fix DOM-based XSS vulnerability in search export functionality
2025-08-04 09:12:49 -04:00
reports
scripts
templates
Closes #19968: Use multiple selection lists for the assignment of object types when editing a permission (#19991)
2025-08-01 14:06:23 -05:00
tenancy
Fixes #19934: add description field to Tenant bulk edit form (#19937)
2025-07-23 13:41:00 -07:00
translations
Update source translation strings
2025-08-02 05:05:04 +00:00
users
Closes #19968: Use multiple selection lists for the assignment of object types when editing a permission (#19991)
2025-08-01 14:06:23 -05:00
utilities
Closes #19977: Denormalize device relationships on component models (#19984)
2025-08-01 15:40:15 -05:00
virtualization
19644 Make atomic use correct database instead of default (#19651)
2025-06-25 15:00:26 -04:00
vpn
Fixes #19610: FieldError when sorting Tunnel Termination on tenant (#19612)
2025-06-04 13:50:12 -07:00
wireless
Fixes #19839: Enable export of parent assignment for recursively nested objects
2025-07-10 12:41:11 -04:00
generate_secret_key.py
Change Interpreter in shebang to python3
2023-02-27 14:09:10 -05:00
manage.py
Fix ambiguous shebang in netbox/manage.py.
2024-10-24 09:04:49 -04:00
release.yaml
Release v4.3.5 (#19975)
2025-07-29 15:28:49 -05:00