Filtering field values for XSS vulnerability
In includes/http/Request.php, Double quotation(") and Single quotation(') are not escaped when getting GET parameter with $request->get() XSS (cross site scripting) vulnerability exists.
Welcome to Vtiger Community. To gain access for account, please contact [ community @ vtiger.com ]
In includes/http/Request.php, Double quotation(") and Single quotation(') are not escaped when getting GET parameter with $request->get() XSS (cross site scripting) vulnerability exists.
mentioned in merge request !765 (merged)
Status changed to closed
Copyright 2023 Vtiger. All rights reserved.