Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0003962 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| backport | [Openbravo ERP] C. Security | critical | have not tried | 2008-06-13 10:02 | 2008-06-24 16:52 | |||
| Reporter | pjuvara | View Status | public | |||||
| Assigned To | iperdomo | |||||||
| Priority | immediate | Resolution | fixed | Fixed in Version | 2.35MP6 | |||
| Status | closed | Fix in branch | 2.3x | Fixed in SCM revision | 5242 | |||
| Projection | none | ETA | none | Target Version | ||||
| OS | Linux 32 bit | Database | Oracle | Java version | 1.6 | |||
| OS Version | Ubuntu 7.10 | Database version | 10g | Ant version | 1.5 | |||
| Product Version | 2.35MP4 | SCM revision | ||||||
| Merge Request Status | ||||||||
| Review Assigned To | ||||||||
| OBNetwork customer | No | |||||||
| Web browser | ||||||||
| Modules | Core | |||||||
| Support ticket | ||||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0003962: Cross-site scripting vulnerability | |||||||
| Description | Details not disclosed | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
||||||||
|
||||||||
 Relationships |
|
Notes |
|
|
(0007905) svnbot (viewer) 2008-06-20 12:24 |
Repository: openbravo Revision: 5242 Author: iperdomo Date: 2008-06-20 12:24:51 +0200 (Fri, 20 Jun 2008) Fixes bug 3962: Sanitized input parameters to prevent XSS --- U branches/r2.3x/src-core/src/org/openbravo/base/VariablesBase.java U branches/r2.3x/src-core/src/org/openbravo/utils/FormatUtilities.java --- https://dev.openbravo.com/websvn/openbravo/?rev=5242&sc=1 [^] |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2008-06-13 10:02 | pjuvara | New Issue | |
| 2008-06-13 10:02 | pjuvara | Assigned To | => iciordia |
| 2008-06-13 10:02 | pjuvara | Status | new => scheduled |
| 2008-06-19 19:24 | iperdomo | Assigned To | iciordia => iperdomo |
| 2008-06-20 12:24 | svnbot | Checkin | |
| 2008-06-20 12:24 | svnbot | Note Added: 0007905 | |
| 2008-06-20 12:24 | svnbot | Status | scheduled => resolved |
| 2008-06-20 12:24 | svnbot | Resolution | open => fixed |
| 2008-06-20 12:24 | svnbot | svn_revision | => 5242 |
| 2008-06-23 23:26 | cromero | Fixed in Version | => 2.35MP6 |
| 2008-06-24 16:52 | plujan | Status | resolved => closed |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |