Ignore:
Timestamp:
12/07/08 17:13:55 (3 years ago)
Author:
KennethLavrsen
Message:

Item375: Eliminate use of URLPARAM in docs so it becomes an XSS trap
Done with the System web topics now

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/core/data/System/SiteChanges.txt

    r482 r1201  
    88nosearch="on"  
    99nototal="on"  
    10 limit="%URLPARAM{"limit" default="25"}%"  
    11 web="%URLPARAM{"web" default="all"}%"  
     10limit="%URLPARAM{"limit" encode="quote" default="25"}%"  
     11web="%URLPARAM{"web" encode="quote" default="all"}%"  
    1212excludetopic="WebStatistics"  
    1313reverse="on" 
Note: See TracChangeset for help on using the changeset viewer.