News box validation - Githubissues

EarthSystemCoG / COG

COG source code

BSD 3-Clause "New" or "Revised" License

8 stars 16 forks source link

Closed LucaCinquini closed 7 years ago

LucaCinquini commented 7 years ago

Who: NOAA security scan

The "News" box functionality must be enhanced with proper validation against XSS

LucaCinquini commented 7 years ago

Now both the News "title" and "text" cannot contain < > characters.

murphysj commented 7 years ago

tested on cu dev. added period to end of error message.