XSS vulnerability in Activity page #2123

Closed
gschueler opened this Issue Oct 20, 2016 · 0 comments

Projects

None yet

1 participant

@gschueler
Contributor

Bug report

My Rundeck detail

  • Rundeck version: 2.6.9
  • install type: all
  • OS Name/version: all

Bug

A URL parameter sent in the request is not encoded properly when rendered in the page.

related: grails/grails-core#10256

@gschueler gschueler added this to the 2.6.10 milestone Oct 20, 2016
@gschueler gschueler referenced this issue Oct 20, 2016
Merged

Fix 2123 #2124

@gschueler gschueler self-assigned this Oct 20, 2016
@gschueler gschueler closed this in #2124 Oct 20, 2016
@gschueler gschueler removed the in progress label Oct 20, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment