Something went wrong while setting issue due date.

the template don't escape the html inside itself

Hello,

the template system doesn't escape the html inside itself, it can be dangerous and a security problem, that should be fixed

Cheers

(from redmine: issue id 2140, created on 2013-03-18, closed on 2013-04-17)

Changesets:
- Revision bcc24281 by Côme Chilliet on 2013-03-18T15:16:12.000Z:

Fixes: #2140 the template don't escape the html inside itself

Custom Fields:
- Bug in version: 1.0.5
Uploads:
- 0001-Fixes-2140-the-template-don-t-escape-the-html-inside.patch

Tasks

0

No tasks are currently assigned. Use tasks to break down this issue into smaller parts.

Activity

bmortier @bmortier · 11 years ago

Author Maintainer

Close issue

(from redmine: written on 2013-04-17)
bmortier closed 7 years ago

closed
bmortier added PJ1802-0188 Security and removed Bugs labels 6 years ago

added PJ1802-0188 Security and removed Bugs labels
bmortier added fusiondirectory-core label 4 years ago

added fusiondirectory-core label
bmortier added FSA-0002 label 4 years ago

added FSA-0002 label
bmortier added FSA-0001 label and removed FSA-0002 label 4 years ago

added FSA-0001 label and removed FSA-0002 label

Please register or sign in to reply

Milestone

None

Due date

None

Confidentiality

Not confidential

0 Participants

Reference:

Menu

Explore