MantisBT: master-1.2.x bbc6b4f3
Author | Committer | Branch | Timestamp | Parent |
---|---|---|---|---|
dhx | dhx | master-1.2.x | 2013-01-18 05:43 | master-1.2.x 75dd763d |
Affected Issues | 0015373: CVE-2013-0197 XSS vulnerability with match_type filter | |||
Changeset | Fix 0015373: match_type XSS vulnerability Jakub Galczyk discovered[1] a cross site scripting (XSS) This vulnerability is particularly wide reaching due to search.php being The value of the "match_type" filter parameter is now correctly [1] http://hauntit.blogspot.de/2013/01/en-mantis-bug-tracker-1212-persistent.html |
|||
mod - core/filter_api.php | Diff File |