projects / squirrelmail.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 07dcee9) | patch
5) XSS in addressbook (different):
authorphilippe_mingo <philippe_mingo@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Fri, 13 Sep 2002 08:55:52 +0000 (08:55 +0000)
committerphilippe_mingo <philippe_mingo@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Fri, 13 Sep 2002 08:55:52 +0000 (08:55 +0000)
commitc6554ec089b31a152ab5d4d08a4233c54370f7f1
treee9829bfff25bab1894c27d387e370cfb4840b717tree | snapshot (zip tar.gz)
parent07dcee9fe75b37b4d622529550cf6e0820b7c056commit | diff
5) XSS in addressbook (different):

Manually entered nicks, email addresses, first names, last names, and
info sections in the addressbook are not filtered so script can be
placed and executed through them the next time the page is viewed.

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@3653 7612ce4b-ef26-0410-bec9-ea0150e637f0
src/addressbook.php diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.