Re: [Python-Dev] Security issue with the tracker

Éric Araujo Fri, 13 Apr 2012 11:56:06 -0700

bugs.python.org already sanitizes the ok_message and Ezio already posteda patch to the upstream bug tracker, so I don’t see what else we could do.


Also note that the Firefox extension NoScript blocks the XSS in this case.


Regards
_______________________________________________
Python-Dev mailing list
Python-Dev@python.org
http://mail.python.org/mailman/listinfo/python-dev
Unsubscribe: 
http://mail.python.org/mailman/options/python-dev/archive%40mail-archive.com

Re: [Python-Dev] Security issue with the tracker

Reply via email to