Clément Collin issues

Repositories
Issues
Comments

Results 2 issues of


                                            Clément Collin

MM-47290 : Migrate "/channel_sidebar" e2e tests to TypeScript

#### Summary Migrated channel_sidebar e2e tests to TypeScript #### Ticket Link https://github.com/mattermost/mattermost-server/issues/21297 #### Release Note ```release-note NONE ```

2: Dev Review

Hacktoberfest

Awaiting Submitter Action

3: QA Review

hacktoberfest-accepted

release-note-none

Contributor

XML escaping and unescaping not properly handled

Problem discovered by attempting XSS injection on UploadAction: - **[SERVER SIDE, [UploadAction.java](https://github.com/manolo/gwtupload/blob/master/core/src/main/java/gwtupload/server/UploadAction.java#L203)]** When creating XML error message, XML entities are not escaped: ``` java postResponse = "" + error +...