Neil Williams 58c66fbbcf V*OrAdminSecret: check modhash if secret token not used. ...

It is necessary to do this check in V*OrAdminSecret as we cannot (and
should not) require a modhash when the secret token is being used
because this would break API compatibility and isn't necessary.

This fixes two XSRF vulnerabilities reported by Jordan Milne
(/u/largenocream).

2014-02-10 10:58:20 -08:00

..

r2

V*OrAdminSecret: check modhash if secret token not used.

2014-02-10 10:58:20 -08:00

babel.cfg

Add full gettext support to the frontend.

2013-08-07 10:56:34 -07:00

check-code

Fix missing file issues in check-code

2013-03-21 16:54:38 -07:00

example.ini

Delete SaveHide.

2014-02-05 12:27:27 -05:00

Makefile

Gold: move about/partners to plugin

2013-11-06 13:03:34 -08:00

Makefile.py

i18n: Extract messages from all installed plugins.

2013-07-24 13:54:41 -07:00

pylintrc

pylintrc: Add inline comment on disable line

2012-12-31 14:08:12 -07:00

setup.cfg

setup.cfg: Remove cruft.

2013-01-02 15:27:11 -08:00

setup.py

Remove obviated workaround for babel bug.

2014-01-24 11:43:51 -08:00

updateini.py

Factor out INI file parsing into util.

2013-11-19 12:16:58 -08:00