Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix XSS in adm_config_report.php (CVE-2018-6403)
Nguyen Tri Tuan reported this vulnerability, allowing an attacker to inject arbitrary code through a crafted 'value' parameter. Prevent the attack by sanitizing the variable before output. Fixes #23906
- Loading branch information