[
http://jira.amdatu.org/jira/browse/AMDATU-367?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Ivo Ladage - van Doorn updated AMDATU-367:
------------------------------------------
Summary: Shindig security regarding gadget URLs passed to ifr servlet
(was: Shindig security regarding gadget URLs passes to ifr servlet)
> Shindig security regarding gadget URLs passed to ifr servlet
> ------------------------------------------------------------
>
> Key: AMDATU-367
> URL: http://jira.amdatu.org/jira/browse/AMDATU-367
> Project: Amdatu
> Issue Type: Improvement
> Components: Amdatu OpenSocial
> Reporter: Ivo Ladage - van Doorn
>
> Any gadget url can be passed to the ifr servlet and rendered, that might a
> security issue.
> For example:
> http://wpg.blueconic.com/gadgets/ifr?url=http://www.labpixies.com/campaigns/todo/todo.xml
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
Amdatu-developers mailing list
[email protected]
http://lists.amdatu.org/mailman/listinfo/amdatu-developers
