Werk #1873: Escaping event text of Event Console messages correctly in views
Komponente | Event Console |
Titel | Escaping event text of Event Console messages correctly in views |
Datum | 20.01.2015 |
Checkmk Edition | Checkmk Raw (CRE) |
Checkmk-Version | 1.2.7i1 |
Level | Kleine Änderung |
Klasse | Sicherheitsfix |
Kompatibilität | Kompatibel - benötigt kein manuelles Eingreifen |
Event texts of messages which have been processed by the Event Console and resulted in a event might contain HTML code which is now escaped correctly to prevent XSS attacks when shown in the Event Console views.