| Key: |
QB-3808
|
| Type: |
Bug
|
| Status: |
Resolved
|
| Resolution: |
Fixed
|
| Priority: |
Major
|
| Assignee: |
Unassigned
|
| Reporter: |
Steve Luo
|
| Votes: |
0
|
| Watchers: |
0
|
|
If you were logged in you would be able to see more operations.
|
|
|
QuickBuild
Created: 20/Dec/21 03:07 PM
Updated: 21/Dec/21 11:03 PM
|
|
| Component/s: |
None
|
| Affects Version/s: |
None
|
| Fix Version/s: |
11.0.26
|
|
|
Original Estimate:
|
Unknown
|
Remaining Estimate:
|
Unknown
|
Time Spent:
|
Unknown
|
|
|
When next build version is a script like <script>alert("hello")</script>, it should be sanitized, otherwise, the script will be executed.
|
|
Description
|
When next build version is a script like <script>alert("hello")</script>, it should be sanitized, otherwise, the script will be executed. |
Show » |
| There are no comments yet on this issue.
|
|
Next build version is not sanitizing user input, can execute potentially vulnerable arbitrary code