Context Navigation

Modify ↓

#778 closed defect (fixed)

Logged in username not escaped

Reported by:	Mark Rowe <bdash@…>	Owned by:	Christopher Lenz
Priority:	lowest	Milestone:	0.8
Component:	general	Version:	devel
Severity:	trivial	Keywords:
Cc:		Branch:
Release Notes:
API Changes:
Internal Changes:

Description

When a user is logged in with a username that contains HTML characters such as "<" and ">", they are not correctly escaped when the username is displayed above the navigation in the text "Logged in as username".

Attachments (0)

Change History (3)

comment:1 by daniel, 20 years ago

Milestone:	→ 0.8
Priority:	normal → lowest
Severity:	normal → trivial

comment:2 by Christopher Lenz, 20 years ago

Owner:	changed from Jonas Borgström to Christopher Lenz
Status:	new → assigned
Summary:	HTML Entities not escaped in logged in username → Logged in username not escaped

comment:3 by Christopher Lenz, 20 years ago

Resolution:	→ fixed
Status:	assigned → closed

Fixed in [958].

Modify Ticket

Change Properties

Summary:
Description:	When a user is logged in with a username that contains HTML characters such as "<" and ">", they are not correctly escaped when the username is displayed above the navigation in the text "Logged in as ''username''". You may use WikiFormatting here.
Type:		Priority:
Milestone:		Component:
Version:		Severity:
Keywords:		Cc:	Set your email in Preferences
Branch:
Release Notes:
API Changes:
Internal Changes:

Action

leave as closed The owner will remain Christopher Lenz.

reopen The resolution will be deleted. Next status will be 'reopened'.

change ownership to The owner will be changed from Christopher Lenz to the specified user.

Add Comment

Your email or username:

E-mail address and name can be saved in the Preferences .

You may use WikiFormatting here.

Attachments ↑ Description ↑

Note: See TracTickets for help on using tickets.

Download in other formats: