Actions
Bug #21330
closed
tfID GET variable used in view_help.php is not sanitized and therefore susceptible to XSS
Start date:
2009-10-22
Due date:
% Done:
0%
Estimated time:
TYPO3 Version:
4.3
PHP Version:
5.2
Tags:
Complexity:
Is Regression:
Sprint Focus:
Description
Sanitize tfID before using it.
Reporter: Jelmer de Hen
Security Team OTRS reference: 2009060310000056
(issue imported from #M12305)
Updated by
Actions