Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

XSS in portlet success message

Description

relates

Activity

Show:

EdG April 19, 2013 at 4:14 PM

Hello everyone! We are in the process of removing component "Portlet" from LPS. Please make the necessary adjustments to affected filters. Thanks!

Sharry Shi June 15, 2012 at 1:46 AM
Edited

PASSED Manual Testing following the steps in the description.

Reproduced on:
Tomcat 7.0 + MySQL 5. Portal 6.1.0 CE GA1.

XSS issue in portlet success message.

Fixed on:
Tomcat 6.0 + MySQL 5. Portal 6.0.x GIT ID: 01d4c65f11e8cc38028f208bf2ff85541939cf57.
Tomcat 7.0 + MySQL 5. Portal 6.1.x.CE GIT ID: 34c7efce2b73c14af75e6a0c245742144ed5da50.
Tomcat 7.0 + MySQL 5. Portal 6.1.x.EE GIT ID: cdb3df5be0f49c602b4454c2f98b84e66370c9a7.
Tomcat 7.0 + MySQL 5. Portal 6.2.x GIT ID: 7e7bbd6d3fd2c1887d31291fafbc2c113b200e95.

No XSS issue in portlet success message.

Michael Saechang June 13, 2012 at 11:26 AM

Committed on:
Portal 6.1.x CE GIT ID: 7c2b7eb2edad1eb50d6f7e057018451feb53730d.
Portal 6.2.x GIT ID: 793e8600b996418d9c88cf399065886cbe3e2f21.

Fixed
Pinned fields
Click on the next to a field label to start pinning.

Details

Assignee

Reporter

Labels

Branch Version/s

6.1.x
6.0.x

Backported to Branch

Committed

Fix Priority

3

Git Pull Request

Components

Fix versions

Affects versions

Priority

Zendesk Support

Created June 12, 2012 at 11:20 PM
Updated June 24, 2023 at 3:57 PM
Resolved August 6, 2012 at 11:31 PM