openstack/horizon
Code Issues Proposed changes
35da6c52e4
horizon/openstack_dashboard/dashboards/project/snapshots
History
manchandavishal 79d1395942 Fix success_url parameter issue for Edit Snapshot 
The "success_url" param is used when updating the project snapshot
[1] and it lacks sanitizing the input URL that allows an attacker to
redirect the user to another website. This patch update 'Updateview'
class to not use the "sucess_url" method.

Closes-bug: #1982676

[1] https://github.com/openstack/horizon/blob/master/openstack_dashboard/dashboards/project/snapshots/views.py#L109

Change-Id: Ied142440965b1a722e7a4dd1be3b1be3b3e1644b
2022-09-14 22:23:27 +05:30
..
templates/snapshots Merge "Add Project ID information in detail page" 2019-02-15 16:07:19 +00:00
__init__.py Move Volume snapshots out of tabbed panel 2017-02-28 14:05:26 +11:00
forms.py Address RemovedInDjango40Warning (2) 2022-02-04 16:22:07 +09:00
panel.py Address RemovedInDjango40Warning (2) 2022-02-04 16:22:07 +09:00
tables.py Address RemovedInDjango40Warning (2) 2022-02-04 16:22:07 +09:00
tabs.py Add cinder-user-facing messages for Backup 2022-09-06 07:29:40 +00:00
tests.py Address RemovedInDjango40Warning (4) 2022-02-04 16:27:18 +09:00
urls.py Address RemovedInDjango40Warning (3) 2022-02-04 16:26:54 +09:00
views.py Fix success_url parameter issue for Edit Snapshot 2022-09-14 22:23:27 +05:30