[displaytag-devel] [jira] Created: (DISPL-223) column property attribute susceptible to cross-site scripting!!

Ralf Hauser (JIRA) Tue, 12 Jul 2005 12:03:27 -0700

column property attribute susceptible to cross-site scripting!!
---------------------------------------------------------------


         Key: DISPL-223
         URL: http://jira.codehaus.org/browse/DISPL-223
     Project: DisplayTag
        Type: Bug
  Components: HTML Generation  
    Versions: 1.0    
    Priority: Critical


Column tag "property" 
(http://displaytag.sourceforge.net/tagreference-displaytag-12.html#column) is 
susceptible to cross-site scripting.
It should offer a 'filter="true"' as existing in 
http://struts.apache.org/userGuide/struts-bean.html#write

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira



-------------------------------------------------------
This SF.Net email is sponsored by the 'Do More With Dual!' webinar happening
July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual
core and dual graphics technology at this free one hour event hosted by HP,
AMD, and NVIDIA.  To register visit http://www.hp.com/go/dualwebinar
_______________________________________________
displaytag-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/displaytag-devel

[displaytag-devel] [jira] Created: (DISPL-223) column property attribute susceptible to cross-site scripting!!

Reply via email to