You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@jackrabbit.apache.org by "Julian Reschke (JIRA)" <ji...@apache.org> on 2016/02/26 10:17:18 UTC

[jira] [Created] (JCR-3950) CLONE - XSS in DirListingExportHandler

Julian Reschke created JCR-3950:
-----------------------------------

             Summary: CLONE - XSS in DirListingExportHandler
                 Key: JCR-3950
                 URL: https://issues.apache.org/jira/browse/JCR-3950
             Project: Jackrabbit Content Repository
          Issue Type: Bug
          Components: jackrabbit-jcr-server
    Affects Versions: 2.2.13, 2.4.4, 2.6.2
            Reporter: Julian Reschke
             Fix For: 2.4.5, 2.6.3, 2.7.1, 2.2.14


lars krapf reported an XSS in the DirListingExportHandler and provided the attached patch.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)