portals-jetspeed-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Sean Taylor (JIRA)" <jetspeed-...@portals.apache.org>
Subject [jira] [Resolved] (JS2-1328) Improve XSS Filter
Date Tue, 07 Jul 2015 01:08:04 GMT

     [ https://issues.apache.org/jira/browse/JS2-1328?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

David Sean Taylor resolved JS2-1328.
------------------------------------
    Resolution: Fixed

> Improve XSS Filter
> ------------------
>
>                 Key: JS2-1328
>                 URL: https://issues.apache.org/jira/browse/JS2-1328
>             Project: Jetspeed 2
>          Issue Type: Bug
>          Components: Security
>    Affects Versions: 2.3.0
>            Reporter: David Sean Taylor
>            Assignee: David Sean Taylor
>             Fix For: 2.3.0
>
>
> Add extra XSS filtering of post parameters for legacy applications that are not removing
XSS attacks. For example: 
> https://www.owasp.org/index.php/Testing_for_Reflected_Cross_site_scripting_(OTG-INPVAL-001)



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-dev-help@portals.apache.org


Mime
View raw message