MantisBT: master-2.28 297773fb

Author Committer Branch Timestamp Parent
dregad dregad master-2.28 2026-05-25 09:08 master-2.28 0f32ceab
Affected Issues  0037103: CVE-2026-52847/CVE-2026-52881: Reflected XSS via Multiple Parameters in `admin/install.php`
Changeset

Fix XSS with db_prefix/suffix

Properly escape user-provided string before output.

Fixes 0037103, GHSA-vcrw-4xvv-jh49

mod - admin/install.php Diff File