Project:
View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
ID | ||||||||
0003962 | ||||||||
Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
backport | [Openbravo ERP] C. Security | critical | have not tried | 2008-06-13 10:02 | 2008-06-24 16:52 | |||
Reporter | pjuvara | View Status | public | |||||
Assigned To | iperdomo | |||||||
Priority | immediate | Resolution | fixed | Fixed in Version | 2.35MP6 | |||
Status | closed | Fix in branch | 2.3x | Fixed in SCM revision | 5242 | |||
Projection | none | ETA | none | Target Version | ||||
OS | Linux 32 bit | Database | Oracle | Java version | 1.6 | |||
OS Version | Ubuntu 7.10 | Database version | 10g | Ant version | 1.5 | |||
Product Version | 2.35MP4 | SCM revision | ||||||
Merge Request Status | ||||||||
Review Assigned To | ||||||||
OBNetwork customer | No | |||||||
Web browser | ||||||||
Modules | Core | |||||||
Support ticket | ||||||||
Regression level | ||||||||
Regression date | ||||||||
Regression introduced in release | ||||||||
Regression introduced by commit | ||||||||
Triggers an Emergency Pack | No | |||||||
Summary | 0003962: Cross-site scripting vulnerability | |||||||
Description | Details not disclosed | |||||||
Tags | No tags attached. | |||||||
Attached Files | ||||||||
![]() |
||||||||
|
![]() |
|
(0007905) svnbot (viewer) 2008-06-20 12:24 |
Repository: openbravo Revision: 5242 Author: iperdomo Date: 2008-06-20 12:24:51 +0200 (Fri, 20 Jun 2008) Fixes bug 3962: Sanitized input parameters to prevent XSS --- U branches/r2.3x/src-core/src/org/openbravo/base/VariablesBase.java U branches/r2.3x/src-core/src/org/openbravo/utils/FormatUtilities.java --- https://dev.openbravo.com/websvn/openbravo/?rev=5242&sc=1 [^] |
![]() |
|||
Date Modified | Username | Field | Change |
2008-06-13 10:02 | pjuvara | New Issue | |
2008-06-13 10:02 | pjuvara | Assigned To | => iciordia |
2008-06-13 10:02 | pjuvara | Status | new => scheduled |
2008-06-19 19:24 | iperdomo | Assigned To | iciordia => iperdomo |
2008-06-20 12:24 | svnbot | Checkin | |
2008-06-20 12:24 | svnbot | Note Added: 0007905 | |
2008-06-20 12:24 | svnbot | Status | scheduled => resolved |
2008-06-20 12:24 | svnbot | Resolution | open => fixed |
2008-06-20 12:24 | svnbot | svn_revision | => 5242 |
2008-06-23 23:26 | cromero | Fixed in Version | => 2.35MP6 |
2008-06-24 16:52 | plujan | Status | resolved => closed |
Copyright © 2000 - 2009 MantisBT Group |