Roundup Tracker - Issues

Message4550

Author ced
Recipients ber, ced, schlatterbeck, willkg
Date 2012-05-14.08:29:27
Message-id <20120514082925.GB2486@tetsuo.ced.homedns.org>
In-reply-to <1336983652.6.0.369254114579.issue2550712@psf.upfronthosting.co.za>
On 14/05/12 08:20 +0000, Bernhard Reiter wrote:
> Cédric, ah good idea.
> I've tried to find out why NotFound does not use the message,
> which in itself may be an issue with the codebase.

I don't think, there is an issue with NotFound indeed I was
misunderstanding his usage.

> However we may still have an issue with your patch:
> The column name may contain arbitrary user input, thus it may be used
> to do a cross scripting attack, we should check if it is properly
> sanitized. What do you think?

Is there any sanitize method available in roundup?
History
Date User Action Args
2012-05-14 08:29:27cedsetrecipients: + ced, schlatterbeck, ber, willkg
2012-05-14 08:29:27cedlinkissue2550712 messages
2012-05-14 08:29:27cedcreate