Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-7894

Protect against {{/html}} injection

    XMLWordPrintable

Details

    • security
    • Low
    • Very hard
    • N/A
    • N/A

    Description

      The simple and efficient solution is to treat '{' the same as '<', '>', '&' etc. both in the xhtml printer and in XMLUtils.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. XWIKI-6740 PR leak in Activity Stream

          • Critical - Crashes, loss of data, severe memory leak.
          • Closed

          Activity

            People

              vmassol Vincent Massol
              aj Andreas Jonsson
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: