You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@felix.apache.org by "Felix Meschberger (JIRA)" <ji...@apache.org> on 2012/11/23 07:55:15 UTC
[jira] [Closed] (FELIX-3010) XSS in Felix Web Console
[ https://issues.apache.org/jira/browse/FELIX-3010?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Felix Meschberger closed FELIX-3010.
------------------------------------
Close after release
> XSS in Felix Web Console
> ------------------------
>
> Key: FELIX-3010
> URL: https://issues.apache.org/jira/browse/FELIX-3010
> Project: Felix
> Issue Type: Bug
> Components: Web Console
> Affects Versions: webconsole-3.1.8
> Reporter: Lars Krapf
> Assignee: Carsten Ziegeler
> Labels: console, felix, xss
> Fix For: webconsole-4.0.0
>
>
> http://localhost:4502/system/console/configMgr/%3Cscript%3Ealert(23);%3C/script%3E
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira