Home > mailing lists

Re: [pgAdmin4][Patch]: RM 1527: XSS vulnerabilities - Mailing list pgadmin-hackers

From	Dave Page
Subject	Re: [pgAdmin4][Patch]: RM 1527: XSS vulnerabilities
Date	August 5, 2016 14:20:15
Msg-id	CA+OCxozoH_R2U=R+v=Mgdtipp1MSyXE0j0U37waH4AV9CzUH3Q@mail.gmail.com Whole thread Raw
In response to	[pgAdmin4][Patch]: RM 1527: XSS vulnerabilities (Khushboo Vashi <khushboo.vashi@enterprisedb.com>)
List	pgadmin-hackers

Tree view

Thanks, applied.

On Fri, Aug 5, 2016 at 10:31 AM, Khushboo Vashi
<khushboo.vashi@enterprisedb.com> wrote:
> Hi,
>
> Please find the attached patch to fix the RM 1527: XSS vulnerabilities.
>
> Fixed items:
>
> 1. Tree Node labels while loading, adding and updating the node
> 2. Error and Success messages of Alertify dialogue
> 3. Properties dialogue: un-editable controls
> 4. SQL Editor title
>
> Please review the patch and let me know if I missed something.
>
> Thanks,
> Khushboo
>
>
>
> --
> Sent via pgadmin-hackers mailing list (pgadmin-hackers@postgresql.org)
> To make changes to your subscription:
> http://www.postgresql.org/mailpref/pgadmin-hackers
>



--
Dave Page
Blog: http://pgsnake.blogspot.com
Twitter: @pgsnake

EnterpriseDB UK: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgadmin-hackers by date:

From: Dave Page
Date: 05 August 2016, 14:20:13
Subject: pgAdmin 4 commit: Fix various escaping issues. Fixes #1527

From: Harshal Dhumal
Date: 05 August 2016, 18:25:10
Subject: patch for RM1177 [pgadmin4]

Re: [pgAdmin4][Patch]: RM 1527: XSS vulnerabilities - Mailing list pgadmin-hackers

Previous

Next