Uploaded image for project: 'Jackrabbit Content Repository'
  1. Jackrabbit Content Repository
  2. JCR-3950

XSS in DirListingExportHandler

    XMLWordPrintableJSON

    Details

      Description

      The XSS vulnerability patched in JCR-3630 applies to the parent name (and the repository metadata) as well, thus more needs to be escaped.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                reschke Julian Reschke
                Reporter:
                reschke Julian Reschke
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: