Please sign in to comment.
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix missing escaping (possible XSS) of category names in the Backend
Entry Admin, which would allow editors that create a forged category name to attack other editors in the backend (privileged access to the backend required). Thanks a lot to Edric Teo for reporting this issue.
- Loading branch information
Showing with 7 additions and 1 deletion.