the template don't escape the html inside itself

Hello,

the template system doesn't escape the html inside itself, it can be dangerous and a security problem, that should be fixed

Cheers

(from redmine: issue id 2140, created on 2013-03-18, closed on 2013-04-17)

Changesets:
- Revision bcc24281 by Côme Chilliet on 2013-03-18T15:16:12.000Z:

Fixes: #2140 the template don't escape the html inside itself

Custom Fields:
- Bug in version: 1.0.5
Uploads:
- 0001-Fixes-2140-the-template-don-t-escape-the-html-inside.patch

Tasks

0

No tasks are currently assigned. Use tasks to break down this issue into smaller parts.

Activity

bmortier @bmortier · 11 years ago

Author Maintainer

Close issue

(from redmine: written on 2013-04-17)
bmortier closed 7 years ago

closed
bmortier added PJ1802-0188 Security and removed Bugs labels 6 years ago

added PJ1802-0188 Security and removed Bugs labels
bmortier added fusiondirectory-core label 4 years ago

added fusiondirectory-core label
bmortier added FSA-0002 label 4 years ago

added FSA-0002 label
bmortier added FSA-0001 label and removed FSA-0002 label 4 years ago

added FSA-0001 label and removed FSA-0002 label

Please register or sign in to reply

Milestone

FusionDirectory 1.0.5 (expired)

Due date

None

Confidentiality

Not confidential

2 Participants

Reference: fusiondirectory/fd-plugins#2140

Menu

Explore