History
|
Log In
H
OME
B
ROWSE PROJECT
F
IND ISSUES
Q
UICK SEARCH:
Learn more about
Quick Search
Issue Details
(
XML
|
Word
|
Printable
)
Key:
QB-3808
Type:
Bug
Status:
Resolved
Resolution:
Fixed
Priority:
Major
Assignee:
Unassigned
Reporter:
Steve Luo
Votes:
0
Watchers:
0
Operations
If you were
logged in
you would be able to see more operations.
QuickBuild
Next build version is not sanitizing user input, can execute potentially vulnerable arbitrary code
Created:
20/Dec/21 03:07 PM
Updated:
21/Dec/21 11:03 PM
Return to search
Component/s:
None
Affects Version/s:
None
Fix Version/s:
11.0.26
Original Estimate:
Unknown
Remaining Estimate:
Unknown
Time Spent:
Unknown
Description
« Hide
When next build version is a script like <script>alert("hello")</script>, it should be sanitized, otherwise, the script will be executed.
Description
When next build version is a script like <script>alert("hello")</script>, it should be sanitized, otherwise, the script will be executed.
Show »
All
Comments
Work Log
Change History
Sort Order:
Change by
Steve Luo
[
21/Dec/21 11:03 PM
]
Fix Version/s
11.0.26
[ 12069 ]
Change by
Steve Luo
[
21/Dec/21 11:03 PM
]
Field
Original Value
New Value
Status
Open
[ 1 ]
Resolved
[ 5 ]
Assignee
Steve Luo
[ steve ]
Resolution
Fixed
[ 1 ]