continuum-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "efraim lorenz longkines (JIRA)" <j...@codehaus.org>
Subject [jira] Commented: (CONTINUUM-2620) add an interceptor that checks for posible cross-site scripting (XSS)
Date Fri, 08 Apr 2011 10:07:22 GMT

    [ http://jira.codehaus.org/browse/CONTINUUM-2620?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=262946#action_262946
] 

efraim lorenz longkines commented on CONTINUUM-2620:
----------------------------------------------------

Will be revising the validation used in every actions in the continuum to prevent invalid
inputs like possible XSS attacks. I will just attach my patch after I'm done.

> add an interceptor that checks for posible cross-site scripting (XSS)
> ---------------------------------------------------------------------
>
>                 Key: CONTINUUM-2620
>                 URL: http://jira.codehaus.org/browse/CONTINUUM-2620
>             Project: Continuum
>          Issue Type: Task
>            Reporter: efraim lorenz longkines
>             Fix For: 1.3.8
>
>
> Right now, continuum is vulnerable for cross-site scripting. Need to add an interceptor
that checks for possible XSS

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message