|Reported by:||matt||Owned by:||vipsoft|
Description (last modified by matt)
I saw on twitter a Piwik XSS tweet pointing to http://packetstormsecurity.org/1003-exploits/piwik-xss.txt
we should fix it and check other variables to ensure there is no xss left.
I re-enabled the sensitive ticket plugin for this one, and set it to sensitive, which seems to work.
Change History (7)
comment:1 Changed 4 years ago by matt (mattab)
- Description modified (diff)
- Milestone set to 1 - Piwik 0.6
- Priority changed from major to critical
- Summary changed from Piwik to Piwik XSS