View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000805 | Main CAcert Website | source code | public | 2010-01-17 11:44 | 2013-01-15 14:31 |
| Reporter | aphexer | Assigned To | |||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | closed | Resolution | open | ||
| Fixed in Version | 2010 Q1 | ||||
| Summary | 0000805: unescaped html entities in output of account.php | ||||
| Description | If a user has special characters (like an '&') in his "lost passphrase questions" then these are not properly escaped and hence misinterpreted by the webbrowser. In pages/account/13.php on lines 135-154, please use htmlentities() on the value to be output. Note: only checked this in 5 minutes, didn't test it ;) | ||||
| Tags | No tags attached. | ||||
| Reviewed by | |||||
| Test Instructions | |||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2010-01-17 11:44 | aphexer | New Issue | |
| 2010-01-17 14:11 | Sourcerer | Note Added: 0001555 | |
| 2010-01-17 14:11 | Sourcerer | Status | new => solved? |
| 2012-05-30 21:17 | NEOatNHNG | Note Added: 0003030 | |
| 2012-05-30 21:17 | NEOatNHNG | Status | solved? => closed |
| 2013-01-15 14:31 | Werner Dworak | Fixed in Version | => 2010 Q1 |
