Open GoogleCodeExporter opened 9 years ago
Bug confirmed - it is relatively easy to perform XSS exploits in the current
version
(0.6) using IE6, & my fix was essentially the same as dov.murik's. This issue
was
picked up by a 3rd-party security company testing our site, with no prior
knowledge
of RSH, so it's probably not too hard for malicious users to figure out.
Original comment by perrett....@gmail.com
on 9 Jul 2008 at 4:32
Original issue reported on code.google.com by
dov.mu...@gmail.com
on 16 Dec 2007 at 3:29Attachments: