[Python-Dev] Security issue with the tracker

Éric Araujo eric at netwok.org
Fri Apr 13 20:53:51 CEST 2012

• Previous message: [Python-Dev] Security issue with the tracker
• Next message: [Python-Dev] Security issue with the tracker
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

bugs.python.org already sanitizes the ok_message and Ezio already posted 
a patch to the upstream bug tracker, so I don’t see what else we could do.
Also note that the Firefox extension NoScript blocks the XSS in this case.
Regards

---

• Previous message: [Python-Dev] Security issue with the tracker
• Next message: [Python-Dev] Security issue with the tracker
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

More information about the Python-Dev mailing list