Commit a38ddf59 authored by Oliver Hader's avatar Oliver Hader
Browse files

Fixed bug #11618: XSS vulnerability in install tool / BE login (thanks to Georg Ringer)

git-svn-id: https://svn.typo3.org/TYPO3v4/Core/branches/TYPO3_4-1@8324 709f56b5-9817-0410-a4d7-c38de5d9e867
parent 538dd38d
......@@ -2,6 +2,7 @@
* Fixed bug #14978: XSS in file tree (thanks to Georg Ringer)
* Fixed bug #13292: TYPO3 error message reveals path to web root (thanks to Xavier Perseguers)
* Fixed bug #11618: XSS vulnerability in install tool / BE login (thanks to Georg Ringer)
2010-05-17 Oliver Hader <oliver@typo3.org>
......
......@@ -4854,7 +4854,7 @@ a:hover {color: #006; text-decoration:underline;}
<tr>
<td bgcolor="#F4F0E8">
<div align="center"><span class="size4text"><strong>TYPO3 '.TYPO3_branch.' Install Tool</strong></span></div>
<div align="center"><span style="color:navy;"><strong>Site: '.$GLOBALS['TYPO3_CONF_VARS']['SYS']['sitename'].'</strong></span></div>
<div align="center"><span style="color:navy;"><strong>Site: ' . htmlspecialchars($GLOBALS['TYPO3_CONF_VARS']['SYS']['sitename']) . '</strong></span></div>
'.($this->passwordOK ? '<div align="center"><span style="color:navy;"><strong>Version: '.TYPO3_version.'</strong></span></div>':'').'<br />
'.($this->step?$this->stepHeader():$this->menu()).$content.'<hr />'.$this->note123().$this->endNotes().'
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment