Last modified: 2013-12-28 13:43:17 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T61069, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 59069 - MATTHEWRBOWKER-6 Fix code vulnerabilities
MATTHEWRBOWKER-6 Fix code vulnerabilities
Status: RESOLVED FIXED
Product: Tool Labs tools
Classification: Unclassified
Matthewrbowker's tools (Other open bugs)
unspecified
All All
: Unprioritized blocker
: ---
Assigned To: Bugzilla Bug Importer (valhallasw)
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-12-28 13:43 UTC by Bugzilla Bug Importer (valhallasw)
Modified: 2013-12-28 13:43 UTC (History)
0 users

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Bugzilla Bug Importer (valhallasw) 2013-12-28 13:43:14 UTC 
This issue was converted from https://jira.toolserver.org/browse/MATTHEWRBOWKER-6.
Summary: Fix code vulnerabilities
Issue type: Bug - A problem which impairs or prevents the functions of the product.
Priority: Blocker
Status: Resolved
Assignee: Matthew Bowker <matthewrbowker@me.com>

-------------------------------------------------------------------------------
From: Matthew Bowker <matthewrbowker@me.com>
Date: Mon, 06 Feb 2012 07:00:28
-------------------------------------------------------------------------------

All of the $_GET[] values in the web tools are insufficiently escaped, and have XSS vulnerabilities. 

I've started work already on this, but I'm filing a bug to track my progress.
Comment 1 Bugzilla Bug Importer (valhallasw) 2013-12-28 13:43:16 UTC 
-------------------------------------------------------------------------------
From: Matthew Bowker <matthewrbowker@me.com>
Date: Tue, 21 Feb 2012 15:24:53
-------------------------------------------------------------------------------

New versions of the tools are uploaded and live.
Comment 2 Bugzilla Bug Importer (valhallasw) 2013-12-28 13:43:17 UTC 
This bug was imported as RESOLVED. The original assignee has therefore not been
set, and the original reporters/responders have not been added as CC, to
prevent bugspam.

If you re-open this bug, please consider adding these people to the CC list:
Original assignee: matthewrbowker.wiki@me.com
CC list: matthewrbowker.wiki@me.com
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links