[SECURITY] XSS in Filelist 13/40813/2
authorMarkus Bucher <markusbucher@gmx.de>
Tue, 3 Jun 2014 06:06:05 +0000 (08:06 +0200)
committerBenjamin Mack <benni@typo3.org>
Wed, 1 Jul 2015 14:17:08 +0000 (16:17 +0200)
commit128d2412537f3439774b1fde4e7d0fad06751f3d
tree806bdb92006281a42a3411ea649410ff17bb4f89
parent4c9aba94a930d56ab374693c9c5cc0458587278a
[SECURITY] XSS in Filelist

Properly escape user input when showing error messages
during file renaming.

Resolves: #59211
Releases: master, 6.2
Security-Bulletin: TYPO3-CORE-SA-2015-004
Change-Id: I78e4f48ed1c1dad13d927faa44a0b093038a5d45
Reviewed-on: http://review.typo3.org/40813
Reviewed-by: Helmut Hummel <helmut.hummel@typo3.org>
Tested-by: Helmut Hummel <helmut.hummel@typo3.org>
Reviewed-by: Benjamin Mack <benni@typo3.org>
Tested-by: Benjamin Mack <benni@typo3.org>
typo3/sysext/core/Classes/Utility/File/ExtendedFileUtility.php