[Fixed] CumulusClips 2.4.1 - Multiple Vulnerabilities

Comments

  • example

    <? function X(&$output) { return htmlspecialchars(&output, ENT_QUOTES); } ?>
    <h1><?=X($video->title)?></h1>

    without modifying the data before inserting
  • Thank you for reporting this. Version 2.4.2 is currently in progress and will address several vulnerabilities such as these.

    Please continue to share any other such issues as you come across them. Thanks!
  • Resolved in 2.5
This discussion has been closed.