Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent some js injection possibilities for the OTOBO admin. Thanks to Tim Puettmanns (maxence) #3764

Closed
stefanhaerter opened this issue Sep 5, 2024 · 0 comments
Closed

Prevent some js injection possibilities for the OTOBO admin. Thanks to Tim Puettmanns (maxence) #3764

stefanhaerter opened this issue Sep 5, 2024 · 0 comments
Assignees
@stefanhaerter
Labels
security Security issues
Milestone
OTOBO 10.0.22

Comments

@stefanhaerter
Copy link
Contributor

stefanhaerter commented Sep 5, 2024
edited
Loading

At a few places, html filters are missing.
@stefanhaerter stefanhaerter self-assigned this Sep 5, 2024
@stefanhaerter stefanhaerter added this to the OTOBO 10.0.22 milestone Sep 25, 2024
@svenoe svenoe closed this as completed Oct 2, 2024
stefanhaerter added a commit that referenced this issue Oct 2, 2024
@stefanhaerter
Issue #3764: Fixed template variable handling.
9ad9c75
@stefanhaerter stefanhaerter mentioned this issue Oct 2, 2024
Merged
stefanhaerter added a commit that referenced this issue Oct 2, 2024
@stefanhaerter
Issue #3764: Fixed template variable handling.
d315fd4
@stefanhaerter stefanhaerter mentioned this issue Oct 2, 2024
Merged
@stefanhaerter stefanhaerter changed the title placeholder Add html filter Oct 2, 2024
svenoe pushed a commit that referenced this issue Oct 2, 2024
@stefanhaerter @svenoe
Issue #3764: Fixed template variable handling.
0676445
svenoe pushed a commit that referenced this issue Oct 2, 2024
@stefanhaerter @svenoe
Issue #3764: Fixed template variable handling.
fc0e1d4
@svenoe svenoe added the security Security issues label Oct 2, 2024
@svenoe svenoe changed the title Add html filter Prevent some js injection possibilities for the OTOBO admin. Thanks to Tim Puettmanns (maxence) Oct 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@stefanhaerter stefanhaerter

Labels
security Security issues
Projects
None yet
Milestone
OTOBO 10.0.22
Development

No branches or pull requests
2 participants
@stefanhaerter @svenoe