Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-9765

Prevent XSS in gadgets

    XMLWordPrintable

    Details

      Description

      It's possible to use some fields (title, comment) in opensocial gadgets to insert malicious code.
      Escape strings in those gadgets to prevent this usage.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: