Miguel Ribeiro
e8a513591d
fix: ssrf vulnerability on all test notifications endpoint
...
fix: xss vulnerability on password reset page
fix: vulnerability allowed to delete avatars from other users
chore: bump version
2026-03-05 23:13:51 +01:00
Miguel Ribeiro
3247ce2c87
feat: enforce CSRF protection and POST-only policy across endpoints ( #940 )
2025-10-18 23:58:50 +02:00
Miguel Ribeiro
69c7d52cf8
fix: vulnerability on delete avatar
...
fix: some strings not using translations on the calendar page
fix: delete avatar would not work if wallos is on a subfolder
2025-05-03 15:37:10 +02:00
Miguel Ribeiro
6e44a26703
feat: add some leeway for totp codes
...
feat: add start date to subscriptions
feat: add option for manual/automatic renewals
fix: layout issue with subscriptions list during search
2024-11-17 16:27:48 +01:00
Miguel Ribeiro
a173d2765f
feat: fisrt api endpoint
...
feat: user has api key available on profile page
feat: api endpoint to calculate monthly cost
feat: split settings page into settings and profile page
feat: redesigned experimental mobile navigation menu
fix: small fixes and typos
2024-10-04 17:42:35 +02:00
