[buddypress-trac] [BuddyPress] #1017: wire not filtering input properly

buddypress-trac at lists.automattic.com buddypress-trac at lists.automattic.com
Wed Sep 16 06:03:06 UTC 2009

Previous message: [buddypress-trac] [BuddyPress] #1016: member id error on forum post
Next message: [buddypress-trac] [BuddyPress] #1017: wire not filtering input properly
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

#1017: wire not filtering input properly
-------------------+--------------------------------------------------------
Reporter:  DJPaul  |       Owner:     
    Type:  defect  |      Status:  new
Priority:  major   |   Milestone:  1.1
Keywords:          |  
-------------------+--------------------------------------------------------
 It's possible to get Javascript into the following on any of the Wire
 elements:

 <a href="javascript:window.location.href='www.google.com'">Tsst</a>

-- 
Ticket URL: <http://trac.buddypress.org/ticket/1017>
BuddyPress <http://buddypress.org/>
BuddyPress

Previous message: [buddypress-trac] [BuddyPress] #1016: member id error on forum post
Next message: [buddypress-trac] [BuddyPress] #1017: wire not filtering input properly
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the buddypress-trac mailing list