[SECURITY] XSS issues in Fluid view helpers 37/59537/2
authorAndreas Wolf <dev@a-w.io>
Tue, 22 Jan 2019 08:43:08 +0000 (09:43 +0100)
committerOliver Hader <oliver.hader@typo3.org>
Tue, 22 Jan 2019 08:43:11 +0000 (09:43 +0100)
commit18e154ec125d76720db0bce814e2a106d586f86b
treeba03949f7e7c589ecf96204b1646e0a29241ab53
parent64cb2f8f5c7d4d8048785ddcd5cc6ff6b744809e
[SECURITY] XSS issues in Fluid view helpers

* HtmlentitiesViewHelper
* UrlencodeViewHelper
* StripTagsViewHelper

Resolves: #85764
Releases: master, 9.5, 8.7
Security-Commit: 37bc147e634d67d521b716f83ca8d925ec57d531
Security-Bulletin: TYPO3-CORE-SA-2019-005
Change-Id: I1d5473b20378217a68e06c792be7f1cf096859fe
Reviewed-on: https://review.typo3.org/59537
Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
Tested-by: Oliver Hader <oliver.hader@typo3.org>
typo3/sysext/fluid/Classes/ViewHelpers/Format/HtmlentitiesViewHelper.php
typo3/sysext/fluid/Classes/ViewHelpers/Format/StripTagsViewHelper.php
typo3/sysext/fluid/Classes/ViewHelpers/Format/UrlencodeViewHelper.php
typo3/sysext/fluid/Tests/Unit/ViewHelpers/Format/HtmlentitiesViewHelperTest.php
typo3/sysext/fluid/Tests/Unit/ViewHelpers/Format/StripTagsViewHelperTest.php
typo3/sysext/fluid/Tests/Unit/ViewHelpers/Format/UrlencodeViewHelperTest.php