https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162017-10-24T15:00:08ZpfSense bugtrackerpfSense - Bug #7998: XSS in widgetkey parameter of multi-instance dashboard widgetshttps://redmine.pfsense.org/issues/7998?journal_id=346942017-10-24T15:00:08ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Confirmed</i> to <i>Feedback</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Applied in changeset <a class="changeset" title="Encode uses of $widgetkey in various contexts so it isn't echoed back to the user raw. Fixes #7998" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/e3907730bdcc879f968d5d917ec9ac6567518e58">e3907730bdcc879f968d5d917ec9ac6567518e58</a>.</p> pfSense - Bug #7998: XSS in widgetkey parameter of multi-instance dashboard widgetshttps://redmine.pfsense.org/issues/7998?journal_id=348032017-10-30T09:11:13ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li></ul> pfSense - Bug #7998: XSS in widgetkey parameter of multi-instance dashboard widgetshttps://redmine.pfsense.org/issues/7998?journal_id=351852017-11-21T10:32:04ZJim Pingle
<ul><li><strong>Private</strong> changed from <i>Yes</i> to <i>No</i></li></ul>