0006509: Port: Additional XSS Vulnerabilities in Filter - MantisBT

ID	Project	Category	View Status	Date Submitted	Last Update

0006509	mantisbt	security	public	2005-12-17 21:21	2006-10-09 11:55

Reporter	thraxisp	Assigned To	thraxisp
Priority	normal	Severity	minor	Reproducibility	always
Status	closed	Resolution	fixed
Product Version	1.0.0rc4
Fixed in Version	1.0.0rc5

Summary	0006509: Port: Additional XSS Vulnerabilities in Filter
Description	Some XSS vulnerabilities in the filter were missed in the last patch. GET: ?type=1&highlight_changed=[XSS] GET: ?type=1&relationship_type=[XSS] GET: ?type=1&relationship_bug=[XSS] Originally reported by Thomas Waldegger thomas.waldegger@morph3us.org
Tags	No tags attached.

thraxisp 2005-12-18 09:23 reporter ~0011812	Fixed in CVS. on BRANCH_1_0_0rc4 view_all_set.php -> 1.57.4.1.2.1 core/filter_api.php -> 1.122.2.2.2.3.2.1