1. 11 Nov, 2021 1 commit
    • Marc Cornellà's avatar
      fix(plugins): fix potential command injection in `rand-quote` and `hitokoto` · 72928432
      Marc Cornellà authored
      The `rand-quote` plugin uses quotationspage.com and prints part of its content to the
      shell without sanitization, which could trigger command injection. There is no evidence
      that this has been exploited, but this commit removes all possibility for exploit.
      
      Similarly, the `hitokoto` plugin uses the hitokoto.cn website to print quotes to the
      shell, also without sanitization. Furthermore, there is also no evidence that this has
      been exploited, but with this change it is now impossible.
      72928432
  2. 29 Jun, 2018 2 commits
  3. 26 Aug, 2015 2 commits
  4. 31 Oct, 2013 1 commit
    • Eduardo San Martin Morote's avatar
      randquote plugin · 37be62ff
      Eduardo San Martin Morote authored
      correcting an issue about encoding some people was having
      added a message when the user doesn't have curl
      added varibles for colors->easier to customize
      37be62ff
  5. 09 Jun, 2013 2 commits