Uploaded image for project: 'OFBiz'
  1. OFBiz
  2. OFBIZ-1525 Issue to group security concerns
  3. OFBIZ-6769

The renderContentAsText method should configure text sanitizer by "sanitizer.permissive.policy" in owasp.properties

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Closed
    • Minor
    • Resolution: Invalid
    • None
    • 16.11.01
    • None
    • Patch
    • Bug Crush Event - 21/2/2015

    Description

      The renderContentAsText method should configure text sanitizer by "sanitizer.permissive.policy" in owasp.properties. If electronic text contains javascript, the renderContentAsText method will remove some content.

      Attachments

        1. ofbiz-renderContentAsText.diff
          1 kB
          Supachai Chaima-ngua (Tor)

        Activity

          People

            jleroux Jacques Le Roux
            tortechnocom Supachai Chaima-ngua (Tor)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: