New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. Weβll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security fix for Cross-Site Scripting Vulnerability in the legend fields #604
Conversation
|
@arjunshibu |
|
@jung-han sure. I'll update it ASAP |
|
@jung-han I've modified the types and added trailing commas. But as you can see one type check is still failing. When I give type as A little help about the type from your side will be very useful. |
|
@arjunshibu |
|
@jung-han thank you so much. I'll work on this tomorrow |
|
@arjunshibu |
|
@jung-han Similar issue exists on https://github.com/nhn/tui.calendar in the event fields. Can I fix this? |
|
@arjunshibu Well, how about posting it on the calendar discussion? It would be nice to talk to the maintainer. |
|
@jung-han can you please comment the message bot wants to hear on the 418sec repo, so that I can earn a reward for fixing this vulnerability |
|
|
Fix for Cross-site Scripting vulnerability
Resolves the bug mentioned in #601 completely without affecting any functionality
Please check if the PR fulfills these requirements
fix #xxx[,#xxx], where "xxx" is the issue number)Description
Fully described here 418sec#2
Please do not merge this commit directly as I said here #601 (comment)π . Thanks in advance π
Once you are happy with the fix, please comment here 418sec#2
Thank you for your contribution to TOAST UI product.π π β¨