security issue comment form | ww.wp.xz.cn

bassjobsen
(@bassjobsen)

5 years, 10 months ago

In the server response the fields of the comment form are not (well) htmlencoded. Applies on all fields (comment,email,name,comment_post_ID,comment_parent,ct_checkjs)

The topic ‘security issue comment form’ is closed to new replies.

0 replies
1 participant
Last reply from: bassjobsen
Last activity: 5 years, 10 months ago
Status: not resolved