MantisBT: master-1.2.x 67ed4313

Diff Back to Repository
Author Committer Branch Timestamp Parent
dhx dhx master-1.2.x 2009-12-01 01:08 master-1.2.x b1f59933
Affected Issues  0011239: XSS on view_user_page.php with user Real Name field
Changeset

Fix 0011239: XSS on view_user_page.php with user Real Name field

User real names aren't sanitised before display on view_user_page.php
thus this leads to an XSS vulnerability.
mod - view_user_page.php Diff File