[SECURITY] XSS in new content element wizard 97/30297/2
authorMarcus Krause <marcus.krause@typo3.org>
Thu, 22 May 2014 07:33:17 +0000 (09:33 +0200)
committerOliver Hader <oliver.hader@typo3.org>
Thu, 22 May 2014 07:33:21 +0000 (09:33 +0200)
commit12741ad685128d8c46a85f8546bd5652a51e7b49
tree212dd000f6395121b22c6906fb748d3853a48705
parent7595ad456c8bcdd13759acafc55d9f0b7ca188ea
[SECURITY] XSS in new content element wizard

Sanitize user-input colPos in new content element wizard.

Change-Id: I68ee05a9113b2a0266c0be612b1a10272cb986a2
Fixes: #48695
Releases: 6.2, 6.1, 6.0, 4.7, 4.5
Security-Commit: eccb66a7ed4cb872f512f611395eae4ed0226e10
Security-Bulletin: TYPO3-CORE-SA-2014-001
Reviewed-on: https://review.typo3.org/30297
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
typo3/sysext/backend/Classes/Controller/ContentElement/NewContentElementController.php