NOTE: If you are a developer, please use a private wiki based on foswiki/trunk on a daily base ...or use trunk.foswiki.org to view this page for some minimal testing.
Use Item9693 for docu changes for 1.2 and 2.0.
You are here: Foswiki>Tasks Web>Item2495 (17 Jan 2010, PaulHarvey) Edit this topic text (e) Attach an image or document to this topic; manage existing attachments (a) View sequential topic history View without formatting (v) Create new topic Printable version of this topic (p) More: delete or rename this topic; set parent topic; view and compare revisions (m)

Item2495: OopsException documents false example using macros in parameters

Priority: CurrentState: AppliesTo: Component: WaitingFor:
Normal Closed Engine    
In Foswiki::OopsException it is stated that we entity-encode parameters so protect against XSS.

But we also document an example where we pass on MAKETEXT. This is confusing for plugin authors.

Fixing the example and making the limitation clear.

-- KennethLavrsen - 11 Dec 2009

ItemTemplate edit

Summary OopsException documents false example using macros in parameters
ReportedBy KennethLavrsen
Codebase 1.0.8, trunk
SVN Range
AppliesTo Engine
Component
Priority Normal
CurrentState Closed
WaitingFor
Checkins Foswikirev:5772 Foswikirev:5773
TargetRelease patch
ReleasedIn 1.0.9
Edit | Attach | Print version | History: r4 < r3 < r2 < r1 | Backlinks | View wiki text | Edit wiki text | More topic actions
Topic revision: r4 - 17 Jan 2010, PaulHarvey
 
The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. see CopyrightStatement. Creative Commons LicenseGet Foswiki at sourceforge.net. Fast, secure and Free Open Source software downloads