[Vtigercrm-commits] [vtiger development] #4828: script tags gets executed in the profile and group creation
vtiger development
vtiger-tickets at trac.vtiger.com
Mon Jan 7 01:48:52 EST 2008
#4828: script tags gets executed in the profile and group creation
-----------------------+----------------------------------------------------
Reporter: bharathi | Owner: developer
Type: defect | Status: new
Priority: major | Milestone:
Component: vtigercrm | Version: 5.0.4
Keywords: |
-----------------------+----------------------------------------------------
If you use script tags in the description field of profile creation, when
you click on the next button it will execute that script. Same problem
occur in the group saving also.
Steps :
1. create a profile and give the text like '''<script>alert("Here is the
issue")</script>''' in the description field.
2. Now click on the next button. It will execute that alert.
--
Ticket URL: <http://trac.vtiger.com/cgi-bin/trac.cgi/ticket/4828>
vtiger development <http://trac.vtiger.com/>
vtigerCRM
More information about the vtigercrm-commits
mailing list