[ https://issues.apache.org/jira/browse/OFBIZ-10828?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16759346#comment-16759346 ]
Deepak Dixit edited comment on OFBIZ-10828 at 2/3/19 9:41 AM: -------------------------------------------------------------- This has been fixed at ofbiz framework trunk at r#1852818 ofbiz framework R18.12 at r#1852819 ofbiz framework R17.12 at r#1852820 R16.11 at r#1852820 Thanks, Niels Heinen of the Google security team for reporting the issue. was (Author: deepak.dixit): This has been fixed at ofbiz framework trunk at r#1852818 ofbiz framework R18.12 at r#1852819 ofbiz framework R17.12 at r#1852820 R16.11 at r#1852820 > Html escaping missing for portalPageId parameter of Help button > --------------------------------------------------------------- > > Key: OFBIZ-10828 > URL: https://issues.apache.org/jira/browse/OFBIZ-10828 > Project: OFBiz > Issue Type: Bug > Affects Versions: Trunk, 17.12.01, 16.11.05, 18.12.01 > Reporter: Deepak Dixit > Assignee: Deepak Dixit > Priority: Major > > Html escaping missing on the portalPageId parameter of Help button > Thanks, Niels Heinen of the Google security team for reporting the issue. -- This message was sent by Atlassian JIRA (v7.6.3#76005)