Ticket #1153 (closed defect: fixed)
Fix XSS vulnerability
|Reported by:||BrianKoontz||Owned by:||BrianKoontz|
Description (last modified by BrianKoontz) (diff)
(Reported by High-Tech Bridge Security Research)
Poorly-formed URLs can cause potentially malicious HTML to be displayed on a wikipage. This bug affects only those sites not using mod_rewrite.
#1152 Fix XSS vulnerability (patch released 31Aug as 1.3.4-p1)