Ticket #632 (new 改善提案) — at Version 1

Opened 14 years ago

Last modified 13 years ago

XSS対策

Reported by: Seasoft Owned by: somebody
Priority: Milestone: EC-CUBE2.11.0
Component: その他 Version: コミュニティ (eccube-comu)
Keywords: Cc: kotani
修正済み:

Description (last modified by Seasoft) (diff)

主にエスケープ漏れの対応。

  • 数値のみしか入らないと想定される Smarty 変数も、記述を揃える意味でエスケープする。

r17499 r18328

Change History

comment:1 Changed 14 years ago by Seasoft

  • Description modified (diff)
Note: See TracTickets for help on using tickets.