hadoop-common-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Tsz Wo (Nicholas), SZE (JIRA)" <j...@apache.org>
Subject [jira] Created: (HADOOP-5820) Fix findbugs warnings for http related codes in hdfs
Date Wed, 13 May 2009 19:14:46 GMT
Fix findbugs warnings for http related codes in hdfs
----------------------------------------------------

                 Key: HADOOP-5820
                 URL: https://issues.apache.org/jira/browse/HADOOP-5820
             Project: Hadoop Core
          Issue Type: Bug
          Components: dfs
            Reporter: Tsz Wo (Nicholas), SZE


There are a few findbugs warnings:
- HRS  HTTP parameter directly written to HTTP header output in org.apache.hadoop.hdfs.server.namenode.StreamFile.doGet(HttpServletRequest,
HttpServletResponse)
- XSS  HTTP parameter directly written to JSP output, giving reflected XSS vulnerability in
org.apache.hadoop.hdfs.server.datanode.browseBlock_jsp
- XSS  HTTP parameter directly written to JSP output, giving reflected XSS vulnerability in
org.apache.hadoop.hdfs.server.datanode.browseBlock_jsp
- XSS  HTTP parameter directly written to JSP output, giving reflected XSS vulnerability in
org.apache.hadoop.hdfs.server.datanode.browseDirectory_jsp
- XSS  HTTP parameter directly written to JSP output, giving reflected XSS vulnerability in
org.apache.hadoop.hdfs.server.datanode.tail_jsp
- XSS  HTTP parameter directly written to JSP output, giving reflected XSS vulnerability in
org.apache.hadoop.hdfs.server.datanode.tail_jsp

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message