Help
Hello,
After doing a research for "CHtmlPurifier" in the forum I had a javascript alert "1".
It seems that the title of one of the posts listed as search results contains some javascript.
So I am now trying to reproducing it in this post, so that developers can fix it later.
This is the page I am talking about : http://www.yiiframew...ier&lang=&type=
(you might have to re-click the search button)
Page 1 of 1
[SOLVED] Bug - Security issue <script>alert("hello world");</script>
Rate Topic:
#2
- Standard Member
-
- Group: Members
- Posts: 254
- Joined: 15-March 09
Posted 31 October 2011 - 10:14 AM
It's the one pointing to this thread: Active Record and [script]alert(1)[/script] problem
Don't like ads in my sig...
#5
- Having fun
-
- Group: Yii Dev Team
- Posts: 2,651
- Joined: 17-January 09
- Location:Russia
Posted 02 November 2011 - 05:10 PM
Fixed. Will be deployed soon.
#6
- Newbie
- Group: Members
- Posts: 9
- Joined: 31-October 11
Posted 27 February 2012 - 05:22 AM
is that one solved now ?
#7
- Having fun
-
- Group: Yii Dev Team
- Posts: 2,651
- Joined: 17-January 09
- Location:Russia
Posted 27 February 2012 - 08:04 AM
Yes, should be so. If not, let me know.
Share this topic:
Page 1 of 1