Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

OF-1192: Fixes Reflected XSS in LDAP Setup test #1441

Merged
merged 1 commit into from Aug 7, 2019

Conversation

guusdk
Copy link
Member

@guusdk guusdk commented Aug 5, 2019

The testing page for checking a a particular user (that's configured to be an Openfire admin) can be retrieved from LDAP contained an XSS vulnerability. This commit fixes that.

Many thanks to Luke Arntson for finding and reporting this issue.

The testing page for checking a a particular user (that's configured to be an Openfire admin) can be retrieved from LDAP contained an XSS vulnerability. This commit fixes that.

Many thanks to Luke Arntson for finding and reporting this issue.
@akrherz akrherz merged commit 04cbd2b into igniterealtime:master Aug 7, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
2 participants