Rob Godfrey created QPID-4841: --------------------------------- Summary: [Java Broker] Ensure all data values returned through the REST API are properly sanitised before displaying in HTML to prevent XSS attacks Key: QPID-4841 URL: https://issues.apache.org/jira/browse/QPID-4841 Project: Qpid Issue Type: Bug Components: Java Broker Reporter: Rob Godfrey Assignee: Rob Godfrey
To prevent cross site scripting attacks, anywhere where a value which may have been set by a user is displayed through the HTML GUI, we should ensure that the value is properly encoded. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org For additional commands, e-mail: dev-h...@qpid.apache.org