[#MRM-1173] Cannot delete patterns with single and double quotes. - jira.codehaus.org

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.2
Fix Version/s: 1.4-M1
Component/s: remote proxy, repository scanning
Labels:
None

Number of attachments :
0

Description

Add/edit Proxy Connector:

Blacklist: cannot delete patterns with ' and "
whitelist: cannot delete patterns with '

Repository Scanning:

cannot delete patterns with ' and "

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Brett Porter added a comment - 12/Sep/11 9:30 AM

This is a (very obscure) way to inject some code, for example: 1', ''); alert('XSS'); setAndSubmit('pattern', '1

Show

Brett Porter added a comment - 12/Sep/11 9:30 AM This is a (very obscure) way to inject some code, for example: 1', ''); alert('XSS'); setAndSubmit('pattern', '1

Hide

Permalink

Olivier Lamy added a comment - 04/Oct/11 8:12 AM

more an escape javascript issue

Show

Olivier Lamy added a comment - 04/Oct/11 8:12 AM more an escape javascript issue

Hide

Permalink

Olivier Lamy added a comment - 04/Oct/11 9:00 AM

fixed r1178794 and r1178795

Show

Olivier Lamy added a comment - 04/Oct/11 9:00 AM fixed r1178794 and r1178795

People

Assignee:

Olivier Lamy

Reporter:

Jevica Arianne B. Zurbano

Vote (0)

Watch (0)

Dates

Created:

17/Apr/09 5:41 AM

Updated:

04/Oct/11 9:00 AM

Resolved:

04/Oct/11 9:00 AM

Archiva

Cannot delete patterns with single and double quotes.

Details

Description

Activity

People

Dates