-
-
Notifications
You must be signed in to change notification settings - Fork 3.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
User full name field not sanitized #4130
Comments
Two things
|
I can't reproduce. Field required: Name: |
I can't reproduce. Warning |
Before closing this as unable to confirm can you please state if you were using one of the default joomla templates or a custom template. It could be an issue with a template override? |
Hello, |
I would report this to t3 urgently then On 22 August 2014 12:50, tsener notifications@github.com wrote:
Brian Teeman |
Steps to reproduce the issue
<iframe src="http://yahoo.com"></iframe>
Expected result
Old Full name should be retained; form should check for sanitized input
Actual result
For the rest of the session, full name of the user is blank. I could not detect a database update though.
System information (as much as possible)
RHEL 6.5x64
PHP 5.5.14 (cli) (built: Jun 27 2014 11:23:47)
Copyright (c) 1997-2014 The PHP Group
Zend Engine v2.5.0, Copyright (c) 1998-2014 Zend Technologies
with Zend OPcache v7.0.4-dev, Copyright (c) 1999-2014, by Zend Technologies
with Xdebug v2.2.5, Copyright (c) 2002-2014, by Derick Rethans
Joomla version:
Joomla 3.3.1 Stable
Additional comments
The text was updated successfully, but these errors were encountered: