[TUIGWAA-114] Site,Entity,Column の表示名に <,>,& が入力できる Created: 2006-09-29 Updated: 2006-09-29 Resolved: 2006-09-29 |
|
| Status: | Resolved |
| Project: | Tuigwaa |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 1.0 |
| Type: | Bug | Priority: | Major |
| Reporter: | takishita | Assignee: | takishita |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Description |
|
Site,Entity,Column の表示名に <,>,& が入力できる XSS,ognl不正文字の観点から入力を禁止するようにすべき。 |
| Comments |
| Comment by takishita [ 2006-09-29 ] |
|
Committed revision 1073. ",\ もはじくように修正 |
| Comment by takishita [ 2006-09-29 ] |
|
Committed revision 1071. validate ではじくように修正。 |