Commit message (Expand) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Prepare release 0.4.1v0.4.1 | Christian Heimes | 2013-03-28 | 3 | -6/+9 | |
* | verify xmlrpc behavior | Christian Heimes | 2013-03-26 | 1 | -1/+13 | |
* | xmlrpc doesn't do external retrieval | Christian Heimes | 2013-03-25 | 1 | -3/+3 | |
* | add possible issue with XMLSchema location | Christian Heimes | 2013-03-07 | 1 | -1/+15 | |
* | add two working xalan exploits | Christian Heimes | 2013-03-07 | 2 | -0/+38 | |
* | back to dev | Christian Heimes | 2013-02-25 | 2 | -1/+7 | |
* | Added tag v0.4 for changeset 6b7ff04c3704 | Christian Heimes | 2013-02-25 | 0 | -0/+0 | |
* | prepare release 0.4#v0.4 | Christian Heimes | 2013-02-25 | 2 | -3/+4 | |
* | Add links to PyPI | Christian Heimes | 2013-02-25 | 1 | -3/+7 | |
* | rename python files | Christian Heimes | 2013-02-25 | 2 | -0/+2 | |
* | PHP's libxml_disable_entity_loader() prevents entity expansion | Christian Heimes | 2013-02-25 | 1 | -0/+3 | |
* | add demo exploits for webdav and xmlrpc | Christian Heimes | 2013-02-25 | 2 | -0/+84 | |
* | note about demo exploit | Christian Heimes | 2013-02-21 | 1 | -1/+1 | |
* | Add demo exploit for external entity expansion | Christian Heimes | 2013-02-21 | 1 | -0/+58 | |
* | merge | Christian Heimes | 2013-02-20 | 1 | -2/+2 | |
|\ | ||||||
| * | fix typos | Fred Drake | 2013-02-19 | 1 | -2/+2 | |
| * | Add infos from Kurt Seifried | Christian Heimes | 2013-02-19 | 1 | -0/+10 | |
| * | openstack is going to use Python's CVE numbers | Christian Heimes | 2013-02-19 | 1 | -15/+0 | |
| * | Added tag v0.3 for changeset 2127a9d13d97 | Christian Heimes | 2013-02-19 | 0 | -0/+0 | |
| * | preparing release 0.3v0.3 | Christian Heimes | 2013-02-19 | 1 | -1/+1 | |
| * | preparing release 0.3 | Christian Heimes | 2013-02-19 | 1 | -1/+3 | |
| * | point to my repos | Christian Heimes | 2013-02-19 | 1 | -1/+2 | |
| * | spelling | Christian Heimes | 2013-02-19 | 1 | -1/+1 | |
| * | document new expat features | Christian Heimes | 2013-02-18 | 1 | -2/+79 | |
| * | document features in stdlib | Christian Heimes | 2013-02-17 | 1 | -3/+52 | |
| * | more documentation and references | Christian Heimes | 2013-02-17 | 1 | -53/+102 | |
| * | test monkey patching a bit | Christian Heimes | 2013-02-17 | 1 | -0/+4 | |
| * | Add experimental monkey patching | Christian Heimes | 2013-02-17 | 2 | -21/+39 | |
| * | bigger caption | Christian Heimes | 2013-02-17 | 1 | -0/+6 | |
| * | post release changes | Christian Heimes | 2013-02-15 | 2 | -1/+7 | |
| * | Added tag v0.2 for changeset ea62aa5e5c3f | Christian Heimes | 2013-02-15 | 0 | -0/+0 | |
| * | prepare release 0.2v0.2 | Christian Heimes | 2013-02-15 | 2 | -2/+2 | |
| * | add version from defusedxml and use it in setup.py | Christian Heimes | 2013-02-15 | 2 | -1/+6 | |
| * | other things list is pessimistic | Christian Heimes | 2013-02-15 | 1 | -4/+6 | |
| * | document lxml and xmlrpc modules | Christian Heimes | 2013-02-15 | 1 | -5/+18 | |
| * | underline h1 | Christian Heimes | 2013-02-15 | 2 | -1/+6 | |
| * | document no decompression bomb protection in lxml | Christian Heimes | 2013-02-15 | 1 | -3/+2 | |
| * | document -1 | Christian Heimes | 2013-02-15 | 1 | -0/+1 | |
| * | test for monkey patching | Christian Heimes | 2013-02-15 | 1 | -0/+6 | |
| * | test another special case | Christian Heimes | 2013-02-15 | 1 | -2/+6 | |
| * | Add protection against XML and gzip attacks to xmlrpclib | Christian Heimes | 2013-02-15 | 3 | -14/+206 | |
| * | tests for iterparse | Christian Heimes | 2013-02-15 | 1 | -11/+26 | |
| * | add module for xmlrpc patch | Christian Heimes | 2013-02-15 | 1 | -0/+21 | |
| * | Document forbid_external | Christian Heimes | 2013-02-15 | 1 | -6/+12 | |
| * | Fix for iterparse patch for Python 2.7 | Christian Heimes | 2013-02-15 | 1 | -2/+5 | |
| * | don't load all modules right away | Christian Heimes | 2013-02-15 | 1 | -8/+8 | |
| * | hack to get bound methods of patched iterparse right | Christian Heimes | 2013-02-15 | 1 | -11/+21 | |
| * | xmlrpclib's ExpatParser needs protection, too | Christian Heimes | 2013-02-15 | 3 | -26/+78 | |
| * | more thanks and explain others | Christian Heimes | 2013-02-15 | 1 | -1/+13 | |
| * | add forbid_external to all classs and functions | Christian Heimes | 2013-02-15 | 7 | -34/+64 |