Changeset 6793


Ignore:
Timestamp:
04/28/2011 01:54:37 PM (4 years ago)
Author:
wwalc
Message:

Added protection against XSS attacks in PHP samples when displaying element names.

Location:
CKEditor/trunk
Files:
2 edited

Legend:

Unmodified
Added
Removed
  • CKEditor/trunk/CHANGES.html

    r6761 r6793  
    4545                        Fixed issues:</p> 
    4646        <ul> 
     47                <li>Added protection against XSS attacks in PHP samples when displaying element names.</li> 
    4748                <li><a href="http://dev.ckeditor.com/ticket/7347">#7347</a> : The ENTER key will not any more be caught by the dialog cover element.</li> 
    4849                <li><a href="http://dev.ckeditor.com/ticket/6718">#6718</a> : Paste from word command dominates over force paste as plain text configuration.</li> 
  • CKEditor/trunk/_samples/assets/_posteddata.php

    r6358 r6793  
    4040?> 
    4141                <tr> 
    42                         <th style="vertical-align: top"><?php echo $sForm?></th> 
     42                        <th style="vertical-align: top"><?php echo htmlspecialchars($sForm); ?></th> 
    4343                        <td><pre class="samples"><?php echo $postedValue?></pre></td> 
    4444                </tr> 
Note: See TracChangeset for help on using the changeset viewer.
© 2003 – 2012 CKSource – Frederico Knabben. All rights reserved. | Terms of use | Privacy policy