XSS in board comment #796

Closed
wruijter opened this Issue Sep 20, 2016 · 1 comment

Projects

None yet

3 participants

@wruijter
wruijter commented Sep 20, 2016 edited

Hey guys,

There is an XSS in your demo site, I think it also resides in the current version.
When opening a cart and adding an activity, the input:
<script>alert('xss test')</script>
will give you xss.

426240765_82268_11656400246875368572

@rrjanbiah rrjanbiah added the bug label Sep 20, 2016
@lmarikannan
Contributor

Fixed in this commit 01472a5

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment