Details
-
Type: Bug
-
Status: Closed
-
Priority: Major
-
Resolution: Duplicate
-
Affects Version/s: 1.8.2a
-
Fix Version/s: 1.8.2-EE-GA_P01, 1.8.3
-
Component/s: Framework
-
Labels:None
-
Environment:ICEfaces
-
Assignee Priority:P2
Description
Using the ice.session extracted from the page:
curl --cookie /tmp/cookies.txt --cookie-jar /tmp/cookies.txt --data "ice.view=<SCrIPT>alert("SIdg96pCgjo1SnsmlAeEF50N6fkZGG")</SCrIPT>&ice.session=XQWAa3fjHI0pQN5VhZIfSw" http://localhost:8080/auctionMonitor/block/send-receive-updates
we see the malformed viewNumber echoed in the response:
<reload view="<SCrIPT>alert(SIdg96pCgjo1SnsmlAeEF50N6fkZGG)</SCrIPT>"/>
Activity
- All
- Comments
- History
- Activity
- Remote Attachments
- Subversion
Repository | Revision | Date | User | Message |
ICEsoft Public SVN Repository | #20924 | Wed Mar 10 15:47:11 MST 2010 | ted.goddard | reverting since previous fix was sufficient ( |
Files Changed | ||||
MODIFY
/icefaces/trunk/icefaces/core/src/com/icesoft/faces/webapp/http/core/ReceiveSendUpdates.java
|
Repository | Revision | Date | User | Message |
ICEsoft Public SVN Repository | #20679 | Wed Feb 17 11:10:40 MST 2010 | ted.goddard | check for integer before echoing viewNumber ( |
Files Changed | ||||
MODIFY
/icefaces/scratchpads/sf-8941/icefaces/core/src/com/icesoft/faces/webapp/http/core/ReceiveSendUpdates.java
|
Repository | Revision | Date | User | Message |
ICEsoft Public SVN Repository | #20668 | Tue Feb 16 15:01:25 MST 2010 | ted.goddard | check for integer before echoing viewNumber ( |
Files Changed | ||||
MODIFY
/icefaces/trunk/icefaces/core/src/com/icesoft/faces/webapp/http/core/ReceiveSendUpdates.java
|