MantisBT: master-1.2.x 1bdc16e5

Author Committer Branch Timestamp Parent
dregad dregad master-1.2.x 2014-11-15 05:36 master-1.2.x d6e16b6f
Affected Issues  0017870: CVE-2014-8987: XSS in adm_config_report.php
Changeset

Revert "Fix 0017870: XSS in adm_config_report.php"

This reverts commit ee8100d6752b9c5dc0dd360a2d903211c5f9eba7.

The wrong string API call was used, it should have been
string_attribute() and not string_display_line(). Thanks to
Paul Richards for pointing this out.

mod - adm_config_report.php Diff File