GitHub user arina-ielchiieva opened a pull request:
https://github.com/apache/drill/pull/935
DRILL-5766: Fix XSS vulnerabilities in Drill
1. Bumped up freemarker version to 2.3.26-incubating.
2. Indicated default output format in Freemarker configuration (HTML).
3. Fixed Web UI bugs listed in DRILL-5346, DRILL-5341, DRILL-5339,
DRILL-5338.
Details in [DRILL-5766](https://issues.apache.org/jira/browse/DRILL-5766).
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/arina-ielchiieva/drill DRILL-5766
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/drill/pull/935.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #935
----
commit 4d998a75d579e9e07c84a86a687ec8b2012846ed
Author: Arina Ielchiieva <[email protected]>
Date: 2017-09-07T12:30:39Z
DRILL-5766: Fix XSS vulnerabilities in Drill
1. Bumped up freemarker version to 2.3.26-incubating.
2. Indicated default output format in Freemarker configuration (HTML).
3. Fixed Web UI bugs listed in DRILL-5346, DRILL-5341, DRILL-5339,
DRILL-5338.
----
---
