Changes between Version 39 and Version 40 of WikiTicketCalendarMacro


Ignore:
Timestamp:
Jul 3, 2010, 8:00:39 PM (14 years ago)
Author:
Steffen Hoffmann
Comment:

add note on security related development

Legend:

Unmodified
Added
Removed
Modified
  • WikiTicketCalendarMacro

    v39 v40  
    44#!html
    55<div class="system-message">
    6 Look at ticket <a href="http://trac-hacks.org/ticket/7239">#7239</a> containing 'serious concerns related to use of HTML generator with potentially insecure input' before deployment of this plugin and audit current applications of versions >= 0.5.0 as well.
     6Look at ticket <a href="http://trac-hacks.org/ticket/7239">#7239</a> containing 'serious concerns related to use of HTML generator with potentially insecure input' before deployment of this plugin and audit current applications of versions >= 0.5.0 as well.<br />
     7<b>Update</b>: Meanwhile we <i>have replaced potentially vulnerable code</i>. Latest version of these fixes will be propagated from trunk to branches soon.
    78</div>
    89}}}