Closed Bug 777667 Opened 12 years ago Closed 12 years ago

Escape markdown fields.

Categories

(Mozilla Reps Graveyard :: reps.mozilla.org, task)

Product:
Mozilla Reps Graveyard
Component:
reps.mozilla.org
Version:
0.3 - Sarek
Platform:
x86_64
Linux
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: giorgos, Assigned: giorgos)

References

Details

      No description provided.
Commits pushed to master at https://github.com/mozilla/remo

https://github.com/mozilla/remo/commit/f2d96095de00ec875e4003aafb173a9c12612cbc
[fix bug 777667] Escape markdown enabled fields.

https://github.com/mozilla/remo/commit/a3043b304a5a0c332d3bec67f9c97c16468fc0fe
Merge pull request #281 from glogiotatidis/field-escape

[fix bug 777667] Escape markdown enabled fields.
Status: ASSIGNED → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
To reproduce:

1. Go to profile
2. Edit profile
3. Paste in bio something with html notation, e.g.: "<script>alert(1);</script>"
4. Save
5. See the text escaped.
Verified.
Status: RESOLVED → VERIFIED
Product: Mozilla Reps → Mozilla Reps Graveyard
You need to log in before you can comment on or make changes to this bug.