refine_by_taxo 5.x-0.1
Bèr Kessels - March 5, 2008 - 20:44
Official release from CVS tag: DRUPAL-5--0-1
First released: March 5, 2008 - 20:44
First released: March 5, 2008 - 20:44
Download: refine_by_taxo-5.x-0.1.tar.gz
Size: 9.37 KB
md5_file hash: f2e6abfa0ee35accfd1fde34e36d0c7d
Last updated: March 5, 2008 - 20:45
View usage statistics for this releaseSize: 9.37 KB
md5_file hash: f2e6abfa0ee35accfd1fde34e36d0c7d
Last updated: March 5, 2008 - 20:45
Drupal's l/url methods would usually escape all possible unsecure code. Due to an incompatibility, refine_by_taxo could no longer use this and build its own anchors, without escaping the tags properly.
Anyone who creates tags with core taxonomy module, could potentially inject arbitrary HTML and script code into your site when you use refine_by_taxo to display these tags. Note that core taxonomy has no issues, its only the display part in refine_by_taxo that did not properlty escape the output.
This is now fixed in HEAD and DRUPAL-5.
See SA-2008-019 for the announcement.