Uploaded image for project: 'Chukwa'
  1. Chukwa
  2. CHUKWA-54

cross site scripting vulnerabilities in hicc widgets

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 0.1.2
    • Fix Version/s: None
    • Component/s: User Interface
    • Labels:
      None
    • Environment:

      Redhat EL 5.1, Java 6

      Description

      Data input from the HICC portal needs to be filtered by xss filter. The enhancement will make HICC portal more secure.

        Activity

        Hide
        eyang Eric Yang added a comment -

        I just committed this. Thanks Cheng.

        Show
        eyang Eric Yang added a comment - I just committed this. Thanks Cheng.
        Hide
        zhangyongjiang Cheng added a comment -

        +1
        looks good to me.

        Show
        zhangyongjiang Cheng added a comment - +1 looks good to me.
        Hide
        eyang Eric Yang added a comment -

        This patch filters web based input from HICC for cross site scripting attack.

        Show
        eyang Eric Yang added a comment - This patch filters web based input from HICC for cross site scripting attack.
        Hide
        eyang Eric Yang added a comment -

        Added XSS Filter for HICC.

        Show
        eyang Eric Yang added a comment - Added XSS Filter for HICC.

          People

          • Assignee:
            eyang Eric Yang
            Reporter:
            eyang Eric Yang
          • Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development