Branch: refs/heads/2.0.0
Home:
https://github.com/tribe29/checkmk
Commit: b0919242febd81baf2c6ff8fb11b9c29d9098860
https://github.com/tribe29/checkmk/commit/b0919242febd81baf2c6ff8fb11b9c29d…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2021-03-12 (Fri, 12 Mar 2021)
Changed paths:
A .werks/12547
M cmk/gui/wato/pages/audit_log.py
Log Message:
-----------
12547 SEC Fix possible XSS on audit log page
Displaying the detail text of changes could trigger execution of arbitrary
javascript code that was previously stored by a modification made to the
configuration.
Change-Id: I38f50752d80770f795ff727e3b0bde0723848a3f