MantisBT: master-1.2.x 45a2b5c3

Diff Back to Repository
Author Committer Branch Timestamp Parent
dhx dhx master-1.2.x 2010-01-15 04:27 master-1.2.x dc96dcfb
Affected Issues  0011397: XSS with project names in relationship table
Changeset

Fix 0011397: XSS with project names in relationship table

A malicious project name containing Javascript is not sanitised before
being printed in the relationships table (the bug view page).
mod - core/relationship_api.php Diff File