[Cosmo-dev] Re: [commits-cosmo] (travis) [5154] Bug 9973: Reviewed
account browser for XSS bugs.
Brian Moseley
bcm at osafoundation.org
Fri Jul 20 12:11:41 PDT 2007
On 7/20/07, svncheckin at osafoundation.org <svncheckin at osafoundation.org> wrote:
>
>
> Revision 5154 Author travis Date 2007-07-20 12:07:24 -0700 (Fri, 20 Jul
> 2007)
> Log Message
> Bug 9973: Reviewed account browser for XSS bugs.
specifically, if you need html escaping for a data value, use <c:out>
to print it to the output stream. don't just inline the value itself.
More information about the cosmo-dev
mailing list