Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix #12238: XSS in print_all_bug_page_word.php project/category names
print_all_bug_page_word.php does not correctly sanitise project and category names. It is thus possible for a malicious user with project manager access permissions (or higher) to redirect users to print_all_bug_page_word.php to execute malicious JavaScript.
- Loading branch information