View Issue Details

WikiRelated ChangesetsJump to Notes
IDProjectCategoryView StatusDate SubmittedLast Update
0012432mantisbtsecuritypublic2010-10-07 05:462011-08-02 12:35
Reportergiallu Assigned Togiallu  
PriorityhighSeveritymajorReproducibilityalways
Status closedResolutionfixed 
Product Version1.1.8 
Target Version1.1.9Fixed in Version1.1.9 
Summary0012432: XSS issues when viewing Summary page
Description

Scripting code entered in summary field might be executed when displaying Summary page

Steps To Reproduce
  1. Enter an issue with scripting code in Summary field
  2. View "Summary" page
  3. See your code beeing executed if issue is displayed in list of longest open issues
TagsNo tags attached.

Relationships

Relationship GraphDependency Graph
related to 0012309 closeddhx XSS issues when viewing Summary page 

Activities

There are no notes attached to this issue.

Related Changesets

MantisBT: master-1.1.x 78d1449e

2010-10-07 06:31

giallu


Details Diff		 Fix 0012432: XSS issues when viewing Summary page

Backport of commit c58a678 for bug 12309		 Affected Issues
0012432
mod - core/summary_api.php Diff File