#31
Solved
XSS Vulnerability
Reported by Tommy Amstrad on Ajax Scaffold · 19/06/2006 07:20:45
- Assigned to:
- rrwhite
- Priority:
- Normal
- Status:
- Solved
- Category:
- None
- Version:
- 3.1.2
There is a cross-site scripting
vulnerability.
When displaying the data in the _MODELNAME.rhtml the following line
….
<%= format_column>
should be …
<%= h>
Attachments
No attachment has been uploaded, yet.
Loading comments...