webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-09 18:45:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
095bf494074994c5a2cd867f3b00603de95ed207
bpfire/html
History
Michael Tremer 095bf49407 mail.cgi: Do not print content of input fields 
This was printed unescaped and could therefore be used
for a stored XSS attack.

Fixes: #12226
Reported-by: Pisher Honda <pisher24@gmail.com>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2019-11-13 18:41:02 +00:00
..
cgi-bin
mail.cgi: Do not print content of input fields
2019-11-13 18:41:02 +00:00
html
embed background image in redirect template
2018-09-10 16:30:09 +01:00