Details
-
Bug
-
Resolution: Fixed
-
Minor
-
2.3.2, 2.4
-
None
-
security, xss
-
Integration
-
Trivial
-
Description
Escaping test result:
org.xwiki.escaping.framework.EscapingError: Escaping test failed.
* Parameter: "xredirect"
Tested file: templates/importinline.vm
URL: http://localhost:8080/xwiki/bin/view/Main/WebHome?skin=default&vm=importinline.vm&xredirect=aaa%22bbb%27ccc%3Eddd%3Ceee&xpage=xpart&language=en
List of validation errors:
line 6 column 63 FATAL: Unescaped apostrophe character