[SECURITY] XSS in Filelist 06/40806/2
authorMarkus Bucher <markusbucher@gmx.de>
Tue, 3 Jun 2014 06:06:05 +0000 (08:06 +0200)
committerBenjamin Mack <benni@typo3.org>
Wed, 1 Jul 2015 14:09:39 +0000 (16:09 +0200)
commit6fa4c8e3e196b8d50d0c65e4fd673cd0aded1bda
treed8849481246f1eb06d3c7ff059bb2a5805bd2a3e
parent1757b4d7d138196612659d077fc06f2d5b06015b
[SECURITY] XSS in Filelist

Properly escape user input when showing error messages
during file renaming.

Resolves: #59211
Releases: master, 6.2
Security-Bulletin: TYPO3-CORE-SA-2015-004
Change-Id: Iffafad7282445d51fa244f3b31e6886b0b0f65b6
Reviewed-on: http://review.typo3.org/40806
Reviewed-by: Benjamin Mack <benni@typo3.org>
Tested-by: Benjamin Mack <benni@typo3.org>
Reviewed-by: Helmut Hummel <helmut.hummel@typo3.org>
Tested-by: Helmut Hummel <helmut.hummel@typo3.org>
typo3/sysext/core/Classes/Utility/File/ExtendedFileUtility.php