projects / squirrelmail.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 963894c) | patch
- Security: Fix possible cross site scripting through the right_main
authorkink <kink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Tue, 31 Jan 2006 07:27:44 +0000 (07:27 +0000)
committerkink <kink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Tue, 31 Jan 2006 07:27:44 +0000 (07:27 +0000)
commit02d8345e01f33bbbc7715287e9f1ea090b27b1c4
tree3aef539cd11541f7c7ed0118de8698695b51ad7dtree | snapshot (zip tar.gz)
parent963894c459ab97e29f236b1c35e1a0e28534ba2dcommit | diff
- Security: Fix possible cross site scripting through the right_main
  parameter of webmail.php. This now uses a whitelist of acceptable
  values. [CVE-2006-0188]

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@10618 7612ce4b-ef26-0410-bec9-ea0150e637f0
ChangeLog diff | blob | blame | history
src/webmail.php diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.