Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Display Name: where there is xss payload: "><script>alert(/xss/)</script>
The text was updated successfully, but these errors were encountered:
CVE-2017-10673 has been assigned for this issue. Please use it in the commit message and ChangeLog, thanks.
Sorry, something went wrong.
This has not been verified, nor reproduced in 3.3.x
in GetSimpleCMS - 3.4.0a
Thanks
Yes known issue in DEV branch, settings.php xss fixed were not merged into new profile.php and have to be manually repatched. profile.php does not exist in stable.
There is no current dev release for master branch, CVE in invalid for stable.
#797
blunt,Hope to learn more with you!
e4433b9
No branches or pull requests
Display Name: where there is xss
payload: "><script>alert(/xss/)</script>
The text was updated successfully, but these errors were encountered: