View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0003907 | mantisbt | rss | public | 2004-05-31 11:31 | 2005-05-31 11:33 |
Reporter | dfaught | Assigned To | vboctor | ||
Priority | normal | Severity | minor | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Fixed in Version | 1.0.0a3 | ||||
Summary | 0003907: Bad RSS link on http://bugs.mantisbt.org/ | ||||
Description | On the bottom of http://bugs.mantisbt.org/main_page.php, there is a link labeled "RSS" that goes to http://bugs.mantisbt.org/news_rss.php?project_id=1. When I click on the link, I get this error: XML Parsing Error: undefined entity * Sec <a href="bug_view_page.php?bug_id=0003660" title="[closed] Ability to execute arbitrary SQL statement if register_globals = ON">0003660</a>: Ability to execute arbitrary SQL statement if register_globals = ON. I'm not sure what the link is supposed to do, but probably not this. :-) | ||||
Tags | No tags attached. | ||||
It's not for direct browsing, it's URL, which can be added to any RSS-aggregator for reading news (and only news now :-( ) from site Just for note - it works, and news really aggregated in reader edited on: 06-01-04 04:03 |
|
I usually get to a page of XML when I click on RSS links, rather than a strange error. I'm not much of an RSS user, so I could be mistaken, but it seems odd for a hyperlink that shows up in the web browser to lead to an error like this. |
|
Hmmm, I'm getting the same error from my news aggregator, so this looks like a real error in the RSS feature to me. Can you reproduce this by adding a new subscription based on the current RSS link? |
|
I tried in my (RSS-reader plugin for Miranda)- and got feed and no errors. You can test your aggregator on my 0.19-CVS installation (but AFAIS nothing was changed in this area) - http://bts.e-city.net.ru/demo/news_rss.php?project_id=1 |
|
I looked at your demo site, and yes, it looks okay. Is this issue unique to version 0.18.2? (My own installation isn't configured to use RSS, so I can't check there.) |
|
This issue is really biting me :( The problem is that the '&' in is invalid, and needs to be escaped as & in XML to work properly. Note that this is only showing up in messages like the change log. (ie. those containing ) I've tested this by substituting the following string: |
|
I think this is a bug in the RSS library that we are using. I would expect this library to escape the data before generating the XML file. These are the options to fix this library:
This bug will depend on the contents of the news, rather than a specific version of Mantis. |
|
I tested it now and it seems to be working. The official bugtracker is now using Mantis 1.0.0a1 which may have the fix for this problem. |
|
I didn't read the comments again before posting my last comment. The problem is probably not fixed yet. |
|