[jira] Commented: (CONTINUUM-2620) Fix XSS vulnerability in Continuum

Maria Catherine Tan (JIRA) Thu, 12 May 2011 03:30:53 -0700

    [ 
http://jira.codehaus.org/browse/CONTINUUM-2620?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=266468#action_266468
 ]


Maria Catherine Tan commented on CONTINUUM-2620:
------------------------------------------------

r1102231
* added ${} for allowed characters in build definition's arguments

r1102234
* merge to 1.3.x branch

> Fix XSS vulnerability in Continuum
> ----------------------------------
>
>                 Key: CONTINUUM-2620
>                 URL: http://jira.codehaus.org/browse/CONTINUUM-2620
>             Project: Continuum
>          Issue Type: Task
>    Affects Versions: 1.3.7, 1.4.0 (Beta)
>            Reporter: Efraim Lorenz Longkines
>            Assignee: Maria Catherine Tan
>             Fix For: 1.3.8, 1.4.1 (Beta)
>
>         Attachments: CONTINUUM-2620.patch
>
>
> Right now, continuum is vulnerable for cross-site scripting. See REDBACK-275 
> and REDBACK-276.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: 
http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] Commented: (CONTINUUM-2620) Fix XSS vulnerability in Continuum

Reply via email to