Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 70902 Details for
Bug 109667
media-sound/gnump3d: XSS + Directory traversal (CAN-2005-312{2|3}
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
gnump3d-xss.diff
gnump3d-xss.diff (text/plain), 945 bytes, created by
Sune Kloppenborg Jeppesen (RETIRED)
on 2005-10-17 22:52:00 UTC
(
hide
)
Description:
gnump3d-xss.diff
Filename:
MIME Type:
Creator:
Sune Kloppenborg Jeppesen (RETIRED)
Created:
2005-10-17 22:52:00 UTC
Size:
945 bytes
patch
obsolete
>--- gnump3d.orig 2005-10-10 23:38:39.000000000 +0100 >+++ gnump3d 2005-10-10 23:41:42.000000000 +0100 >@@ -857,6 +857,12 @@ > my $header = &getHTTPHeader( 404, "text/html" ); > &sendData( $data, $header ); > >+ >+ # >+ # Prevent XSS attacks >+ # >+ $uri = urlEncode( $uri ); >+ > my $text = &getErrorPage( $ARGUMENTS{'theme'}, > $literals->get( "ERROR404" ) ); > &sendData( $data, $text ); >@@ -1086,7 +1092,6 @@ > my $header = &getHTTPHeader( 404, "text/html" ); > &sendData( $data, $header ); > >- > my $text = &getErrorPage( $ARGUMENTS{'theme'}, > $literals->get( "EMPTY_PLAYLIST" ) ); > &sendData( $data, $text ); >@@ -1168,6 +1173,11 @@ > my $header = &getHTTPHeader( 404, "text/html" ); > &sendData( $data, $header ); > >+ # >+ # Prevent XSS attacks >+ # >+ $uri = urlEncode( $uri ); >+ > my $text = &getErrorPage( $ARGUMENTS{'theme'}, > $literals->get( "ERROR404" ) ); > &sendData( $data, $text );
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 109667
:
70901
|
70902
|
71315
|
71316
|
71443
|
71444