19 Aug
2009
19 Aug
'09
9:08 p.m.
User: goba Branch: DRUPAL-5 Date: Wed, 19 Aug 2009 19:08:46 +0000 Modified files: /modules/l10n_server/l10n_community l10n_community.js l10n_community.module Log message: Backported fix for XSS reported by Psicomante. Strings output for JavaScript display were not escaped properly. Due to how the Drupal.org policy limits security announcements to 'stable' software (that is not alpha packages like l10n_server), this fix is not accompanied by an SA. Links: http://cvs.drupal.org/diff.php?path=contributions/modules/l10n_server/l10n_c... http://cvs.drupal.org/diff.php?path=contributions/modules/l10n_server/l10n_c...