XSS in board comment #796

wruijter opened this Issue Sep 20, 2016 · 1 comment


None yet

3 participants

wruijter commented Sep 20, 2016 edited

Hey guys,

There is an XSS in your demo site, I think it also resides in the current version.
When opening a cart and adding an activity, the input:
<script>alert('xss test')</script>
will give you xss.


@rrjanbiah rrjanbiah added the bug label Sep 20, 2016

Fixed in this commit 01472a5

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment