Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content…
5ec496885e18
Actions

Description

Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download

Thanks to rehme.infosec for reporting the issues.

Details

Provenance

machniak	Authored on Nov 4 2023, 5:52 PM
mollekopf	Pushed on Nov 6 2023, 11:21 AM

Parents

R113:7ad7680174b6: Fix tests

Branches

Unknown

Tags

Unknown

Build Status

Buildable 44719

Event Timeline

machniak committed R113:5ec496885e18: Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content… (authored by machniak).Nov 4 2023, 5:58 PM

Harbormaster completed building B44719: R113:5ec496885e18: Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content….Nov 6 2023, 11:21 AM

Changes (6)

Path

Size

CHANGELOG.md

program/

actions/

mail/

viewsource.php

lib/

Roundcube/

rcube_charset.php

rcube_imap.php

rcube_output.php

tests/

Framework/

Charset.php

R113:5ec496885e18

View Options

CHANGELOG.md

View Options

program/actions/mail/viewsource.php

View Options

program/lib/Roundcube/rcube_charset.php

View Options

program/lib/Roundcube/rcube_imap.php

View Options

program/lib/Roundcube/rcube_output.php

View Options

tests/Framework/Charset.php

Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content…5ec496885e18Actions

Description

Details

Event Timeline

Changes (6)

R113:5ec496885e18

CHANGELOG.md

program/actions/mail/viewsource.php

program/lib/Roundcube/rcube_charset.php

program/lib/Roundcube/rcube_imap.php

program/lib/Roundcube/rcube_output.php

tests/Framework/Charset.php

Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content…
5ec496885e18
Actions