Openbravo Issue Tracking System - Openbravo ERP |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0056754 | Openbravo ERP | A. Platform | public | 2024-10-14 08:11 | 2024-11-10 22:44 |
|
| Reporter | alostale | |
| Assigned To | Triage Platform Base | |
| Priority | normal | Severity | major | Reproducibility | have not tried |
| Status | closed | Resolution | fixed | |
| Platform | | OS | 5 | OS Version | |
| Product Version | | |
| Target Version | | Fixed in Version | PR25Q1 | |
| Merge Request Status | |
| Review Assigned To | |
| OBNetwork customer | |
| Web browser | |
| Modules | Core |
| Support ticket | |
| Regression level | |
| Regression date | |
| Regression introduced in release | |
| Regression introduced by commit | |
| Triggers an Emergency Pack | No |
|
| Summary | 0056754: broken layout in window title |
| Description | When opening a link to Openbravo backoffice if the title of a view contains some special characters the layout can be broken. |
| Steps To Reproduce | Try to open some link like:
https://localhost:8080/openbravo/#%7Bst:0,bm:%5B%7BviewId:__X__,params:%7BtabTitle:__%3Cimg%20src=a%20onerr [^]
or=alert()%3E__%7D%7D%5D%7D |
| Proposed Solution | Properly treat/escape tab titles when rendering them. |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | | depends on | backport | 0056994 | PR24Q4 | closed | Triage Platform Base | broken layout in window title | | depends on | backport | 0056995 | PR24Q3.3 | scheduled | Triage Platform Base | broken layout in window title | | depends on | backport | 0056996 | PR24Q2.5 | scheduled | Triage Platform Base | broken layout in window title | | Not all the children of this issue are yet resolved or closed. |
|
| Attached Files | |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2024-10-14 08:11 | alostale | New Issue | |
| 2024-10-14 08:11 | alostale | Assigned To | => Triage Platform Base |
| 2024-10-14 08:11 | alostale | Modules | => Core |
| 2024-10-14 08:11 | alostale | Triggers an Emergency Pack | => No |
| 2024-11-03 16:30 | hgbot | Note Added: 0171259 | |
| 2024-11-05 18:53 | AugustoMauch | Status | new => scheduled |
| 2024-11-10 22:44 | hgbot | Resolution | open => fixed |
| 2024-11-10 22:44 | hgbot | Status | scheduled => closed |
| 2024-11-10 22:44 | hgbot | Note Added: 0171728 | |
| 2024-11-10 22:44 | hgbot | Fixed in Version | => PR25Q1 |
| 2024-11-10 22:44 | hgbot | Note Added: 0171729 | |