Ticket #2152 (new defect)

Opened 12 months ago

Last modified 12 months ago

SQL injection vulnerability?

Reported by: wojtek Owned by: aoneil
Priority: medium Milestone:
Component: (Unknown) Version:
Severity: medium effort / impact Keywords:
Cc: Hours:

Description

As the problem is about the SilverStripe? site, I have e-mailed it to Sigurd and Will.

I'm not sure about it - please check it.

Change History

Changed 12 months ago by wojtek

  • priority changed from blocker to medium

it seems that there is no sql injection vulnerability, just the html tags are not removed at silverstripe.com/themes

Note: See TracTickets for help on using tickets.