Skip to content

Fix XSS bug by escaping user input when updating firmware details #376

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Mar 31, 2020

Conversation

lum8rjack
Copy link

Fixed XSS but by adding the flask escape function to escape user's input when updating details of the firmware. Related to issue #375

@weidenba weidenba self-requested a review March 31, 2020 08:49
@weidenba weidenba added the under review Core dev is looking into code label Mar 31, 2020
@weidenba weidenba merged commit ae5867a into fkie-cad:master Mar 31, 2020
@lum8rjack lum8rjack deleted the bug-xss-updateanalysis branch September 7, 2022 03:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
under review Core dev is looking into code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants