Uploaded image for project: 'VCL'
  1. VCL
  2. VCL-274

check for SQL injection / XSS

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 2.2
    • web gui (frontend)
    • None

    Description

      As pointed out by Leo Simons in the VOTE thread for releasing VCL 2.1, there may be some SQL Injection / XSS vulnerabilites in VCL. See point #4 in his message for further information:

      http://mail-archives.apache.org/mod_mbox/incubator-general/200911.mbox/%3C30b2aef60911240214y7b763a1fs749e16b97393a506%40mail.gmail.com%3E

      Attachments

        Activity

          People

            jfthomps Josh Thompson
            jfthomps Josh Thompson
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: