Uploaded image for project: 'OFBiz'
  1. OFBiz
  2. OFBIZ-1525 Issue to group security concerns
  3. OFBIZ-6769

The renderContentAsText method should configure text sanitizer by "sanitizer.permissive.policy" in owasp.properties

    Details

    • Type: Sub-task
    • Status: Closed
    • Priority: Minor
    • Resolution: Invalid
    • Affects Version/s: None
    • Fix Version/s: 16.11.01
    • Component/s: None
    • Labels:
    • Flags:
      Patch
    • Sprint:
      Bug Crush Event - 21/2/2015

      Description

      The renderContentAsText method should configure text sanitizer by "sanitizer.permissive.policy" in owasp.properties. If electronic text contains javascript, the renderContentAsText method will remove some content.

        Attachments

        1. ofbiz-renderContentAsText.diff
          1 kB
          Supachai Chaima-ngua (Tor)

          Activity

            People

            • Assignee:
              jacques.le.roux Jacques Le Roux
              Reporter:
              tortechnocom Supachai Chaima-ngua (Tor)
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: