Details

    • Fix Priority:
      4
    • Similar Issues:
      Show 5 results 

      Description

      Microblogs is displaying apostrophes and opening quotation marks incorrectly.

      1. Give your user the SO role.
      2. Navigate to the dashboard.
      3. Update your status to say: Today is Joe Blogg's fake "birthday".
      4. The status ballon displays: Today is Joe Blogg&039;s fake &034;birthday".
      5. Navigate to the Microblogs page.
      6. The microblog entry also displays: Today is Joe Blogg&039;s fake &034;birthday".

        Issue Links

          Activity

          Hide
          Eduardo Garcia added a comment -

          Tested for SOS-1022 and SOS-1222. Full test example:

          Today is Joe Blogg's #fake "birthday". <script>alert("this is an xss test");</script>

          Show
          Eduardo Garcia added a comment - Tested for SOS-1022 and SOS-1222 . Full test example: Today is Joe Blogg's #fake "birthday". <script>alert("this is an xss test");</script>
          Hide
          Eduardo Garcia added a comment -

          Tested for SOS-1022 and SOS-1222. Full test example:

          Today is Joe Blogg's #fake "birthday". <script>alert("this is an xss test");</script>

          I reviewed my latest PR with Iliyan and he suggested that using escapeJS was the right way for the edit textarea.

          Show
          Eduardo Garcia added a comment - Tested for SOS-1022 and SOS-1222 . Full test example: Today is Joe Blogg's #fake "birthday". <script>alert("this is an xss test");</script> I reviewed my latest PR with Iliyan and he suggested that using escapeJS was the right way for the edit textarea.
          Hide
          mandy.zia added a comment -

          PASSED Manual Testing using the steps in the description. I replaced the entered text with the one that Eduardo used in his comment.

          Fixed on:
          Tomcat 7 + MySQL 5. Portal 6.1.x EE GIT ID: a63f173a43703c6e681ecf8953abc2bcb429fd5d.
          Plugins 6.1.x EE GIT ID: 62ea70ea822a4de51b9631d04138ecbce0e65a08.

          Show
          mandy.zia added a comment - PASSED Manual Testing using the steps in the description. I replaced the entered text with the one that Eduardo used in his comment. Fixed on: Tomcat 7 + MySQL 5. Portal 6.1.x EE GIT ID: a63f173a43703c6e681ecf8953abc2bcb429fd5d. Plugins 6.1.x EE GIT ID: 62ea70ea822a4de51b9631d04138ecbce0e65a08.

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Date of First Response:
                Days since last comment:
                2 years, 46 weeks, 2 days ago

                Development

                  Structure Helper Panel