ID: 12547
Title: Fix possible XSS on audit log page
Component: Setup
Level: 1
Class: Security fix
Version: 2.1.0i1
Displaying the detail text of changes could trigger execution of arbitrary
javascript code that was previously stored by a modification made to the
configuration. This issue may affect users of the setup of previous 2.0.0
versions.
Show replies by date