Home > mailing lists

Thread: [pgAdmin4][Patch]: RM 1527: XSS vulnerabilities

[pgAdmin4][Patch]: RM 1527: XSS vulnerabilities

From

Khushboo Vashi

Date:

05 August 2016, 12:31:59

Hi,

Please find the attached patch to fix the RM 1527: XSS vulnerabilities.

Fixed items:

1. Tree Node labels while loading, adding and updating the node

2. Error and Success messages of Alertify dialogue

3. Properties dialogue: un-editable controls

4. SQL Editor title

Please review the patch and let me know if I missed something.

Thanks,

Khushboo

Attachment

RM_1527.patch

Re: [pgAdmin4][Patch]: RM 1527: XSS vulnerabilities

From

Dave Page

Date:

05 August 2016, 14:20:15

Thanks, applied.

On Fri, Aug 5, 2016 at 10:31 AM, Khushboo Vashi
<khushboo.vashi@enterprisedb.com> wrote:
> Hi,
>
> Please find the attached patch to fix the RM 1527: XSS vulnerabilities.
>
> Fixed items:
>
> 1. Tree Node labels while loading, adding and updating the node
> 2. Error and Success messages of Alertify dialogue
> 3. Properties dialogue: un-editable controls
> 4. SQL Editor title
>
> Please review the patch and let me know if I missed something.
>
> Thanks,
> Khushboo
>
>
>
> --
> Sent via pgadmin-hackers mailing list (pgadmin-hackers@postgresql.org)
> To make changes to your subscription:
> http://www.postgresql.org/mailpref/pgadmin-hackers
>



--
Dave Page
Blog: http://pgsnake.blogspot.com
Twitter: @pgsnake

EnterpriseDB UK: http://www.enterprisedb.com
The Enterprise PostgreSQL Company