Uploaded image for project: 'Observium'
  1. Observium
  2. OBS-3713

Potential for XSS in menu search

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • None
    • Professional Edition
    • Web Interface

    Description

      There is a potential for XSS if one decides to output the queryString returned by search input.
      Fixed by using the get_vars() function

      Attachments

        1. xssajaxsearch.diff
          0.6 kB
          Kent Johannessen

        Activity

          People

            landy Mike Stupalov
            kentbjoh Kent Johannessen
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: