XSS problem on routes page

cloudfoundry-incubator / admin-ui

Need new main contributor - An application for viewing Cloud Foundry metrics and operations data.

Apache License 2.0

71 stars 44 forks source link

Closed rkoster closed 9 years ago

rkoster commented 9 years ago

After the platform of one of our clients has undergone perpetration testing I got the following popup on the routes page:

To reproduce create an app with the following name \"><img src=x onerror=prompt(0);>.

rboykin commented 9 years ago

Please check with the latest code. I've put in some commits to address.