Project

General

Profile

Actions

Bug #35977

closed

Host list interpretes HTML from comment-field

Added by Markus Bucher almost 2 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
High
Assignee:
-
Category:
Inventory
Target version:

Description

Host index page was found to interpret HTML-code written into a host's comment-field.

Since the Host-detail page shows the HTML-code as text, the index-page should do the same thing (also to avoid potential malicous values).

Actions #1

Updated by The Foreman Bot almost 2 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/9592 added
Actions #2

Updated by The Foreman Bot almost 2 years ago

  • Fixed in Releases 3.6.0 added
Actions #3

Updated by Ewoud Kohl van Wijngaarden almost 2 years ago

  • Target version set to 3.5.2
Actions #4

Updated by Markus Bucher almost 2 years ago

  • Status changed from Ready For Testing to Closed
Actions #5

Updated by The Foreman Bot almost 2 years ago

  • Pull request https://github.com/theforeman/foreman/pull/9598 added
Actions #6

Updated by The Foreman Bot almost 2 years ago

  • Pull request https://github.com/theforeman/foreman/pull/9599 added
Actions #7

Updated by The Foreman Bot almost 2 years ago

  • Pull request https://github.com/theforeman/foreman/pull/9600 added
Actions #8

Updated by The Foreman Bot almost 2 years ago

  • Fixed in Releases 3.4.2 added
Actions #9

Updated by The Foreman Bot almost 2 years ago

  • Fixed in Releases 3.5.2 added
Actions #10

Updated by Ewoud Kohl van Wijngaarden almost 2 years ago

  • Category set to Inventory
  • Triaged changed from No to Yes
Actions

Also available in: Atom PDF