|
If you were logged in you would be able to see more operations.
|
|
|
dotCMS
Created: July 13, 2009 11:16 AM
Updated: July 23, 2009 11:55 AM
Due: 8/12/08
|
|
| Component/s: |
a. Unknown
|
| Affects Version/s: |
None
|
| Fix Version/s: |
1.9
|
|
|
Time Tracking:
|
|
Original Estimate:
|
1 hour
|
|
|
Remaining Estimate:
|
1 hour
|
|
|
Time Spent:
|
Not Specified
|
|
|
|
|
We need to wrap the request and stick it in the VelocityContext so that we can override getParameter and encode the XSS there.
|
|
Description
|
We need to wrap the request and stick it in the VelocityContext so that we can override getParameter and encode the XSS there. |
Show » |
| There are no comments yet on this issue.
|
|
Bug
Released
Major
XSS Fix in dotCMS is Encoding at times we don't want
