Branch: refs/heads/master
Home:
https://github.com/tribe29/checkmk
Commit: 29d3f74a63dccb88116f14357e8ee724db868d50
https://github.com/tribe29/checkmk/commit/29d3f74a63dccb88116f14357e8ee724d…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2021-03-12 (Fri, 12 Mar 2021)
Changed paths:
A .werks/12547
M cmk/gui/wato/pages/audit_log.py
Log Message:
-----------
12547 SEC Fix possible XSS on audit log page
Displaying the detail text of changes could trigger execution of arbitrary
javascript code that was previously stored by a modification made to the
configuration.
Change-Id: I38f50752d80770f795ff727e3b0bde0723848a3f