(ok 2.11.2.2) XSS on login page

A software tool to bring MySQL to the Web

Brought to you by: ibennetch, nijel

#2594 (ok 2.11.2.2) XSS on login page

Status: fixed

Owner: Marc Delisle

Labels: None

Priority: 1

Updated: 2013-06-11

Created: 2007-11-20

Creator: Marc Delisle

Private: No

In libraries/auth/cookie.auth.lib.php, the value of $GLOBALS['convcharset'] is not sanitized.

Discussion

Marc Delisle - 2007-11-20

priority: 5 --> 1

summary: XSS on login page --> (ok 2.11.2.2) XSS on login page

status: open --> open-fixed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Delisle - 2007-11-20

Patch for 2.11.2.1

bug1835123.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Delisle - 2007-11-20

Logged In: YES
user_id=210714
Originator: YES

File Added: bug1835123.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Delisle - 2007-11-20

status: open-fixed --> closed-fixed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Michal Čihař - 2013-06-11

Status: closed-fixed --> fixed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link: