Control: tags -1 + patch
Attached is a patch that prevents the XSS flaws previously mentioned.
Regards,
Daniel
Index: common-html.php
===
--- common-html.php (revision 3261)
+++ common-html.php (working copy)
@@ -398,7 +398,7 @@
Package: qa.debian.org
Severity: important
The following links shows XSS flaws, it will show an alert on Firefox and
put a marquee on the site.
http://qa.debian.org/developer.php?login=";>alert(1)
http://qa.debian.org/developer.php?gpg_key=%22%3E%3Cmarquee%3E
http://qa.debian.org/developer.php?pa
2 matches
Mail list logo
