Changes between Version 39 and Version 40 of WikiTicketCalendarMacro


Ignore:
Timestamp:
Jul 3, 2010 10:00:39 PM (4 years ago)
Author:
hasienda
Comment:

add note on security related development

Legend:

Unmodified
Added
Removed
Modified
  • WikiTicketCalendarMacro

    v39 v40  
    44#!html 
    55<div class="system-message"> 
    6 Look at ticket <a href="http://trac-hacks.org/ticket/7239">#7239</a> containing 'serious concerns related to use of HTML generator with potentially insecure input' before deployment of this plugin and audit current applications of versions >= 0.5.0 as well. 
     6Look at ticket <a href="http://trac-hacks.org/ticket/7239">#7239</a> containing 'serious concerns related to use of HTML generator with potentially insecure input' before deployment of this plugin and audit current applications of versions >= 0.5.0 as well.<br /> 
     7<b>Update</b>: Meanwhile we <i>have replaced potentially vulnerable code</i>. Latest version of these fixes will be propagated from trunk to branches soon. 
    78</div> 
    89}}}