U4-7159 - XSS issue with EditMacro.aspx

Created by Shannon Deminick 29 Sep 2015, 09:37:42 Updated by Shannon Deminick 29 Sep 2015, 09:45:35

Example:

/umbraco/Dialogs/EditMacro.aspx?objectId="%2cObviouslyGoodValue%3a%20alert%28document%2ecookie%29%2c%2f%2f

Comments

Priority: Normal

Type: Bug

State: Fixed

Assignee: Shannon Deminick

Difficulty: Normal

Category:

Backwards Compatible: True

Fix Submitted:

Affected versions:

Due in version: 7.3.0

Sprint:

Story Points:

Cycle: