fixing JForum XSS error in PM module with quotes

Main menu:

Topics

Recent Posts

Feeds

RSS Feed RSS - Posts

May 2014
M T W T F S S
« Apr   Jun »
 1234
567891011
12131415161718
19202122232425
262728293031  

Past Posts

Java/Java EE

JDBC

Other

Archive for May, 2014

fixing JForum XSS error in PM module with quotes

May 24th, 2014 by Jeanne Boyarsky

A member reported¬†a XSS vulnerability in stock JForum 2.1.9. We confirmed it was a vulnerability/exposure on CodeRanch as well and fixed our fork. Luckily, it was an easy fix unlike the CSRF problems last year. In addition to saying how to fix the issue in this post, I’m going to outline some of the other […]

the art of being matrix managed (as a developer)

May 22nd, 2014 by Jeanne Boyarsky

I was talking to someone about my experiences about being on multiple teams today and thought it would make for a good blog post. Note I said BEING on multiple teams. I did a bit of searching before writing this up and found most articles are from a manager’s point of view. This post is […]