vcs.fsf.org Git - squirrelmail.git/commit

author	philippe_mingo <philippe_mingo@7612ce4b-ef26-0410-bec9-ea0150e637f0>
	Fri, 13 Sep 2002 23:57:51 +0000 (23:57 +0000)
committer	philippe_mingo <philippe_mingo@7612ce4b-ef26-0410-bec9-ea0150e637f0>
	Fri, 13 Sep 2002 23:57:51 +0000 (23:57 +0000)
commit	0120b304ff2bb5dd9e5de837ed3632d924b5e8aa
tree	f3fb3e9ba0987fbac5845763015d3e75f115a299	tree \| snapshot (zip tar.gz)
parent	dda2cc884dbb8745c36c973da3537aad45f4c264	commit \| diff

4) XSS in help.php:

http://<VULNERABLE
SITE>.net/webmail/src/help.php?chapter=<script>alert('boop!')</script>

Based on Jason's fix.

Also include a nasty i18n bugfix

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@3665 7612ce4b-ef26-0410-bec9-ea0150e637f0

src/help.php

diff | blob | blame | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom