CVS Commit Overview for 2006-10-22
==================================
2006-10-22 Tibor Simko <[email protected]>
* modules/websearch/lib/websearch_regression_tests.py: Introduced
basic cross-site scripting vulnerability tests for the search
engine.
2006-10-22 Tibor Simko <[email protected]>
* modules/websearch/lib/search_engine.py,
modules/websearch/lib/websearch_templates.py,
modules/websearch/lib/websearch_webinterface.py: Added missing
output parameter escaping in several places, satisfying the new XSS
regression tests.
2006-10-22 Tibor Simko <[email protected]>
* modules/websearch/lib/websearch_external_collections.py: Escape
"Haven't found what you were looking for?" external collection link
labels, fixing XSS vulnerability.
--
CDS Invenio Developers <[email protected]>
