View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0011242 | mantisbt | security | public | 2009-12-01 01:34 | 2010-02-22 14:34 |
| Reporter | dhx | Assigned To | dhx | ||
| Priority | urgent | Severity | major | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Product Version | 1.2.0 | ||||
| Target Version | 1.2.0 | Fixed in Version | 1.2.0 | ||
| Summary | 0011242: XSS on manage_proj_edit_page.php with user Real Name field | ||||
| Description | Categories that are assigned to users whose names contain "<script>alert(42);</script>" will cause a XSS bug on manage_proj_edit_page.php. The user real name needs to be sanitised before being printed. | ||||
| Tags | No tags attached. | ||||
|
MantisBT: master-1.2.x 868c1d6c 2009-12-01 01:34 Details Diff |
Fix 0011242: XSS on manage_proj_edit_page.php with user Real Name field Categories that are assigned to users whose names contain "<script>alert(42);</script>" will cause a XSS bug on manage_proj_edit_page.php. The user real name needs to be sanitised before being printed. |
Affected Issues 0011242 |
|
| mod - manage_proj_edit_page.php | Diff File | ||
|
MantisBT: master a77662d5 2009-12-01 01:34 Details Diff |
Fix 0011242: XSS on manage_proj_edit_page.php with user Real Name field Categories that are assigned to users whose names contain "<script>alert(42);</script>" will cause a XSS bug on manage_proj_edit_page.php. The user real name needs to be sanitised before being printed. |
Affected Issues 0011242 |
|
| mod - manage_proj_edit_page.php | Diff File | ||
