Return-Path: Delivered-To: apmail-continuum-issues-archive@www.apache.org Received: (qmail 93846 invoked from network); 13 Apr 2011 06:18:55 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 13 Apr 2011 06:18:55 -0000 Received: (qmail 56944 invoked by uid 500); 13 Apr 2011 06:18:54 -0000 Delivered-To: apmail-continuum-issues-archive@continuum.apache.org Received: (qmail 56895 invoked by uid 500); 13 Apr 2011 06:18:53 -0000 Mailing-List: contact issues-help@continuum.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@continuum.apache.org Delivered-To: mailing list issues@continuum.apache.org Received: (qmail 56886 invoked by uid 99); 13 Apr 2011 06:18:51 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 13 Apr 2011 06:18:51 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [63.246.2.115] (HELO codehaus01.managed.contegix.com) (63.246.2.115) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 13 Apr 2011 06:18:45 +0000 Received: from codehaus01.managed.contegix.com (localhost.localdomain [127.0.0.1]) by codehaus01.managed.contegix.com (Postfix) with ESMTP id A9185458112 for ; Wed, 13 Apr 2011 01:18:23 -0500 (CDT) Date: Wed, 13 Apr 2011 01:18:22 -0500 (CDT) From: "Maria Odea Ching (JIRA)" To: issues@continuum.apache.org Message-ID: <12671389.54055.1302675502491.JavaMail.haus-jira@codehaus01.managed.contegix.com> In-Reply-To: <8984890.49035.1301995942234.JavaMail.haus-jira@codehaus01.managed.contegix.com> Subject: [jira] Updated: (CONTINUUM-2620) Fix XSS vulnerability in Continuum MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 4e90ceb663894a42f12c0e28abbab431 X-Virus-Checked: Checked by ClamAV on apache.org [ http://jira.codehaus.org/browse/CONTINUUM-2620?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Maria Odea Ching updated CONTINUUM-2620: ---------------------------------------- Summary: Fix XSS vulnerability in Continuum (was: Fix CSRF vulnerability in Continuum) > Fix XSS vulnerability in Continuum > ---------------------------------- > > Key: CONTINUUM-2620 > URL: http://jira.codehaus.org/browse/CONTINUUM-2620 > Project: Continuum > Issue Type: Task > Reporter: efraim lorenz longkines > Fix For: 1.3.8 > > > Right now, continuum is vulnerable for cross-site scripting. See REDBACK-275 and REDBACK-276. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira