View Issue Details

IDProjectCategoryView StatusLast Update
0006308OXID eShop (all versions)4.04. Securitypublic2016-01-27 09:31
Reportercesnauskast 
PrioritynormalSeverityminorReproducibilityalways
Status resolvedResolutionfixed 
Product Version 
Target VersionFixed in Version4.8.10 / 5.1.10 
Summary0006308: Admin config options are not validated
DescriptionAdmin configuration inputs should be validated if value is in the needed format.
For example colors should be like #FFFFFF not like any string.
TagsNo tags attached.
ThemeNot defined
BrowserNot defined
PHP VersionNot defined
MySQL VersionNot defined

Activities

mantas.vaitkunas

2016-01-15 11:00

administrator   ~0011434

Added oxNoJsValidator. It prevents adding <script> tag in configs.