ID: 11501
Title: Fix possible XSS using titles of views
Component: Multisite
Level: 1
Class: Security fix
Version: 2.0.0i1
Authenticated users that are allowed to configure and share custom views
could inject arbitrary JS code to all users which are permitted to view this
view.
Show replies by date