tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 32953] - SERVLETAPI: XSS Issues
Date Mon, 10 Jan 2005 02:38:09 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=32953>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=32953





------- Additional Comments From lala_ong@hotmail.com  2005-01-10 03:38 -------
Hi... Are you saying when user successfully login to tomcat Web Application 
Manager, they are able to control the tomcat?

Please advice me.. You advice is greatly appreciated. Thanks!

(In reply to comment #0)
> A number of XSS issues have been reported against the examples.
> I will attach a patch for jakarta-servletapi-5 that fixes the reported issues
> (and a few others fo a similar nature).



-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org


Mime
View raw message