[Savannah-help-public] [sr #107282] XSS in account email change form

Follow-up Comment #5, sr #107282 (project administration): Confirmed. The link in comment #0 no longer produces XSS. Thanks. ___ Reply to this item at: ___

[Savannah-help-public] [sr #107282] XSS in account email change form

Update of sr #107282 (project administration): Status: In Progress => Done Assigned to:None => Beuc Open/Closed:Open => Closed __

[Savannah-help-public] [sr #107282] XSS in account email change form

Follow-up Comment #3, sr #107282 (project administration): I've attached a patch. I didn't test it because I don't have a test environment for it here, but it should at least give you an idea of how to fix it. (file #20709) ___ Additional

[Savannah-help-public] [sr #107282] XSS in account email change form

Update of sr #107282 (project administration): Status:None => In Progress ___ Follow-up Comment #2: Hi, We would gladly welcome a patch. Check the "source code" link at the bottom to loca

[Savannah-help-public] [sr #107282] XSS in account email change form

Follow-up Comment #1, sr #107282 (project administration): Admins, what do I have to do to get you to take this seriously? You're currently trusting every site you visit while logged into Savannah not to take over your session and wreak havoc on the site. Should I put up an attack page that pub

[Savannah-help-public] [sr #107282] XSS in account email change form

URL: Summary: XSS in account email change form Project: Savannah Administration Submitted by: hashproduct Submitted on: Wed 24 Feb 2010 06:39:20 PM EST Category: Savannah website