Page MenuHomePhabricator
Create Task
Maniphest T61069

MATTHEWRBOWKER-6 Fix code vulnerabilities
Closed, ResolvedPublic
Actions

Description

This issue was converted from https://jira.toolserver.org/browse/MATTHEWRBOWKER-6.
Summary: Fix code vulnerabilities
Issue type: Bug - A problem which impairs or prevents the functions of the product.
Priority: Blocker
Status: Resolved
Assignee: Matthew Bowker <matthewrbowker@me.com>

From: Matthew Bowker <matthewrbowker@me.com>

Date: Mon, 06 Feb 2012 07:00:28

All of the $_GET[] values in the web tools are insufficiently escaped, and have XSS vulnerabilities.

I've started work already on this, but I'm filing a bug to track my progress.

Version: unspecified
Severity: blocker

Details

Reference
bz59069

Event Timeline

bzimport raised the priority of this task from to Needs Triage.Nov 22 2014, 2:33 AM
bzimport added a project: Tool-Matthewrbowker's-tools.
bzimport set Reference to bz59069.
JiraBugConverter created this task.Dec 28 2013, 1:43 PM
JiraBugConverter added a comment.Dec 28 2013, 1:43 PM

From: Matthew Bowker <matthewrbowker@me.com>

Date: Tue, 21 Feb 2012 15:24:53

New versions of the tools are uploaded and live.

JiraBugConverter added a comment.Dec 28 2013, 1:43 PM

This bug was imported as RESOLVED. The original assignee has therefore not been
set, and the original reporters/responders have not been added as CC, to
prevent bugspam.

If you re-open this bug, please consider adding these people to the CC list:
Original assignee: matthewrbowker.wiki@me.com
CC list: matthewrbowker.wiki@me.com

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL