diff options
author | Joey Hess <joey@kitenet.net> | 2011-01-22 10:15:33 -0400 |
---|---|---|
committer | Joey Hess <joey@kitenet.net> | 2011-01-22 10:15:33 -0400 |
commit | dcfeaaad5b6ac478251e37be777de40da4d0909c (patch) | |
tree | a0868ee12139cb9e2a53fee94a9fef0de90ad01c /doc/bugs/goto_with_bad_page_name.mdwn | |
parent | 5d3998555ffbeb1c20b84dd4cdc46c825c07bec8 (diff) |
comments: Fix XSS security hole due to missing validation of page name.
Values have to be checked against wiki_file_regexp, not just file_pruned.
Audited the rest of the code base for similar problems, found none.
Diffstat (limited to 'doc/bugs/goto_with_bad_page_name.mdwn')
0 files changed, 0 insertions, 0 deletions