Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix #16513: XSS in account_sponsor_page.php project names
account_sponsor_page.php.php does not correctly sanitise project names. It is thus possible for a malicious user with project manager access permissions (or higher) to let users execute malicious JavaScript when visiting account_sponsor_page.php.
- Loading branch information