Actions
Bug #21462
closed
Bug #21442: Various XSS vulnerabilities in the interface
xss in tags tooltips
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
Checked
Regression:
Description
the tooltip of tags is not safe, in rule page and tree, but directives are safe
happens in 6.2 and 7.0; 6.1 has been fixed
Updated by Nicolas CHARLES almost 2 years ago
- Description updated (diff)
- Target version changed from old 6.1 issues to relocate to 6.2.16
Updated by François ARMAND almost 2 years ago
- Status changed from New to In progress
- Assignee set to François ARMAND
Updated by François ARMAND almost 2 years ago
- Status changed from In progress to Pending technical review
- Assignee changed from François ARMAND to Nicolas CHARLES
- Pull Request set to https://github.com/Normation/rudder/pull/4392
Updated by Anonymous almost 2 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder|45f273e0ada9b0c248a0757f17cc7fa0ccbf8075.
Updated by François ARMAND almost 2 years ago
- Fix check changed from To do to Checked
Updated by Alexis Mousset almost 2 years ago
This bug has been fixed in Rudder 6.2.16, 7.0.5 and 7.1.3 which were released today.
Updated by Alexis Mousset almost 2 years ago
- Status changed from Pending release to Released
Actions