Ticket #3011 (closed defect: fixed)

Opened 20 months ago

Last modified 20 months ago

XhrIframeProxy: xip_client.html and xip_server.html have inadequate protections for XSS

Reported by: jburke Owned by: jburke
Priority: normal Milestone:
Component: IO Version: 0.4.1
Severity: normal Keywords:
Cc:

Description

xip_client.html and xip_server.html have weaknesses that could allow for certain types of cross site scripting attacks. The issues started in 0.4.1.

Change History

Changed 20 months ago by jburke

  • status changed from new to closed
  • resolution set to fixed

(In [8610]) Fixes #3011.

Changed 20 months ago by jburke

  • status changed from closed to closed
  • resolution set to fixed

(In [8611]) Fixes #3011.

Changed 20 months ago by jburke

  • status changed from closed to closed
  • resolution set to fixed

(In [8612]) Fixes #3011.

Changed 20 months ago by jburke

  • status changed from closed to closed
  • resolution set to fixed

(In [8613]) Fixes #3011

Changed 20 months ago by anonymous

  • milestone deleted

Milestone 0.4.3 deleted

Note: See TracTickets for help on using tickets.