← Back to team overview

mahara-contributors team mailing list archive

  1. mahara-contributors team
  2. Mailing list archive
  3. Message #11642

[Bug 1079498] Re: group member search not sanitised

  Thread PreviousDate PreviousThread Next 
** Changed in: mahara
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
https://bugs.launchpad.net/bugs/1079498

Title:
  group member search not sanitised

Status in Mahara ePortfolio:
  Fix Released

Bug description:
  Original report:

  "if logged in and go to link

  http://<wwwroot>/group/members.php?id=2&query=123'%22%3E%3Cscript%3Ealert(1)%3C/script%3Exss

  then xss"

To manage notifications about this bug go to:
https://bugs.launchpad.net/mahara/+bug/1079498/+subscriptions
  Thread PreviousDate PreviousThread Next