Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Address BootStrap security vulnerability #135

Open
DanielCaspers opened this issue May 11, 2019 · 0 comments
Open

Address BootStrap security vulnerability #135

DanielCaspers opened this issue May 11, 2019 · 0 comments
Assignees
@DanielCaspers
Labels
App Infrastructure Structural investment for features, but not directly a feature

Comments

@DanielCaspers
Copy link
Owner

There is currently an open security vulnerability possible with tooltips or popups in BootStrap making it possible to perform an XSS attack.

This task will be responsible for updating all client and server libraries for DigitalInspection, and a quick smoke test of the application.

https://github.com/DanielCaspers/DigitalInspection/network/alert/DigitalInspection/packages.config/bootstrap/open
@DanielCaspers DanielCaspers added the App Infrastructure Structural investment for features, but not directly a feature label May 11, 2019
@DanielCaspers DanielCaspers added this to the v1.3 milestone May 11, 2019
@DanielCaspers DanielCaspers self-assigned this May 11, 2019
@DanielCaspers DanielCaspers removed this from the v1.3 milestone Jul 4, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@DanielCaspers DanielCaspers

Labels
App Infrastructure Structural investment for features, but not directly a feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@DanielCaspers