Uploaded image for project: 'Forum (closed)'
  1. Forum (closed)
  2. MGNLFORUM-81

Forum or page comments posts containing html are not escaped properly in admin interface

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • 1.0
    • m1
    • None
    • None

    Description

      Html in forum posts is actually processed while viewing posts in admin interface and is corrupting the display (apart from possibility to craft attack by injecting html that will overlay some ui element and redirect forum moderator so some other site).

      Checklists

        Acceptance criteria

        Attachments

          Activity

            People

              had Jan Haderka
              had Jan Haderka
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: