Closed Bug 1134736 Opened 10 years ago Closed 10 years ago

urlbase must be HTML-filtered in rest.html.tmpl

Categories

(Bugzilla :: WebService, defect)

Product:
Bugzilla
Component:
WebService
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
Bugzilla 5.0

People

(Reporter: LpSolit, Assigned: LpSolit)

References

Details

Attachments

(1 file)

patch, v1
(deleted), patch
dkl
: review+
Details | Diff | Splinter Review
See bug 866927 comment 37: >=== added file 'template/en/default/rest.html.tmpl' >+ <link href="[% urlbase FILTER none %][% 'skins/standard/global.css' FILTER mtime %]" urlbase must be HTML-filtered, else undesired characters can be injected.
Summary: urlbase must be HTML-filtered in .html.tmpl templates → urlbase must be HTML-filtered in rest.html.tmpl
Attached patch patch, v1 (deleted) — Splinter Review
Assignee: webservice → LpSolit
Status: NEW → ASSIGNED
Attachment #8566665 - Flags: review?(dkl)
Comment on attachment 8566665 [details] [diff] [review] patch, v1 Review of attachment 8566665 [details] [diff] [review]: ----------------------------------------------------------------- r=dkl
Attachment #8566665 - Flags: review?(dkl) → review+
Flags: approval5.0+
Flags: approval+
To ssh://gitolite3@git.mozilla.org/bugzilla/bugzilla.git cd284d4..18e8d99 master -> master To ssh://gitolite3@git.mozilla.org/bugzilla/bugzilla.git c473640..16009fb 5.0 -> 5.0
Status: ASSIGNED → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: