Diffusion roundcubemail 68af7c864a36

Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024…
68af7c864a36
Actions

Project Tags

None

Referenced Files

None

Subscribers

None

Description

Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024-42009]

Credits to Oskar Zeino-Mahmalat (https://www.sonarsource.com)

Details

Provenance

machniak	Authored on Aug 3 2024, 7:09 AM
mollekopf	Pushed on Nov 6 2024, 2:26 PM

Parents

R113:b5ed0e49464e: Fix bug where imap_conn_option's 'socket' was ignored (#9566)

Branches

Unknown

Tags

Unknown

Build Status

Buildable 52038

Event Timeline

machniak committed R113:68af7c864a36: Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024… (authored by machniak).Aug 4 2024, 8:29 AM

Harbormaster completed building B52038: R113:68af7c864a36: Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024….Nov 6 2024, 2:30 PM

Changes (7)

Path

Size

CHANGELOG.md

program/

actions/

mail/

settings/

lib/

Roundcube/

rcube_washtml.php

tests/

Actions/

Mail/

Index.php

R113:68af7c864a36

View Options

CHANGELOG.md

View Options

program/actions/mail/compose.php

View Options

program/actions/mail/index.php

View Options

program/actions/mail/show.php

View Options

program/actions/settings/index.php

View Options

program/lib/Roundcube/rcube_washtml.php

View Options

tests/Actions/Mail/Index.php

Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024…68af7c864a36Actions

Description

Details

Event Timeline

Changes (7)

R113:68af7c864a36

CHANGELOG.md

program/actions/mail/compose.php

program/actions/mail/index.php

program/actions/mail/show.php

program/actions/settings/index.php

program/lib/Roundcube/rcube_washtml.php

tests/Actions/Mail/Index.php

Fix XSS vulnerability in post-processing of sanitized HTML content [CVE-2024…
68af7c864a36
Actions