Skip to content

usvn/usvn

master
Switch branches/tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
src
 
 
 
 
 
 
 
 
 
 

User-friendly SVN

Important links

Run on Vagrant

Requirements:

To run:

vagrant up

To suspend execution:

vagrant suspend

To destroy virtual machine:

vagrant destroy

Run USVN installation process again after installed

vagrant destroy <-- destroy virtual machine
make            <-- remove instalation files

Official maintainers

The project is not maintain. But if you find a security issue or want to contribute we are happy to help.

Changes

1.0.10

  • Force SameSite Strict on cookies to prevent CSRF CVE-2020-25070 (Report by Jomar & Serizao)
  • Prevent shell code execution in the commit view CVE-2020-25069 (Report by Jomar & Serizao)
  • Minimum recommended PHP version 7.3

1.0.9

  • Fix XSS in SVN logs. Credit to Sysdream
  • Solve some problems about binary file, locale and mysql importing.
  • Add X-Forwarded-Proto variable check on protocol check
  • Added error_log for fail2ban capture by apache-auth filter
  • Solve the key length error reported by mysql when import the sql.
  • Set the locale by system.locale in the config file.

1.0.8

  • Fix JVN#73794686 Cross-site scripting vulnerability

About

Manage Subversion repositories via a web interface

Topics

Resources

Stars

Watchers

Forks

Packages

No packages published

Languages