[!!!][SECURITY] XSS in filelink element
authorGeorg Ringer <mail@ringerge.org>
Wed, 28 Mar 2012 11:54:15 +0000 (13:54 +0200)
committerOliver Hader <oliver@typo3.org>
Wed, 28 Mar 2012 11:54:18 +0000 (13:54 +0200)
commite8ceb3622b5d441f51aed48be471c6a63c78e3d9
treeca6da34373c5920940edf353f93836044b3660ec
parentfa6a1036554ec099d6947dbe09707a8d998ec217
[!!!][SECURITY] XSS in filelink element

Add escaping to description and file name of file link content element.
Warning: There is no longer HTML possible in description!

Change-Id: I709af9bb05d84c5a61448b2d0b6ec8f8a20e5ec5
Fixes: #25246
Security-Commit: 7873e7e96e9a6261096910c342fefdcfa9b431bb
Security-Bulletin: TYPO3-CORE-SA-2012-001
Reviewed-on: http://review.typo3.org/10005
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
typo3/sysext/css_styled_content/pi1/class.tx_cssstyledcontent_pi1.php
typo3/sysext/css_styled_content/static/setup.txt
typo3/sysext/css_styled_content/static/v3.8/setup.txt
typo3/sysext/css_styled_content/static/v3.9/setup.txt
typo3/sysext/css_styled_content/static/v4.2/setup.txt
typo3/sysext/css_styled_content/static/v4.3/setup.txt
typo3/sysext/css_styled_content/static/v4.4/setup.txt