Jump to content
Sign in to follow this  
Followers 4
thomfre

Lack of input sanitation

Recommended Posts

It appears that too many of the input fields in the cache submission process is accepted without sanitizing the input properly.

The cache page for this cache looks really ugly, probably because of a missing end tag: https://coord.info/GC6AHXY

I've recently also seen issues where open tags in the "Hidden by" field caused all links on the page to go to the owner profile. Fields that have no reason to accept HTML, should not accept HTML...

Share this post


Link to post

Someone quickly responded (GS or the CO?), the cache page now looks alright.

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  
Followers 4

×