$ -> Affected files
18-Apr-2008 Joe Hunt
-! Changed db_escape function to avoid XSS attacks via js db injection
+! Module gl sealed against XSS Attacks
+$ /gl/includes/db/gl_db_accounts.inc
+ /gl/includes/db/gl_db_account_types.inc
+ /gl/includes/db/gl_db_bank_accounts.inc
+ /gl/includes/db/gl_db_bank_trans.inc
+ /gl/includes/db/gl_db_bank_trans_types.inc
+ /gl/includes/db/gl_db_currencies.inc
+ /gl/includes/db/gl_db_trans.inc
+
+18-Apr-2008 Janusz Dobrowolski
+! Modules admin and dimensions sealed against XSS attacks
+$ /admin/payment_terms.php
+ /admin/shipping_companies.php
+ /admin/db/company_db.inc
+ /admin/db/maintenance_db.inc
+ /admin/db/users_db.inc
+ /admin/db/voiding_db.inc
+ /dimensions/includes/dimensions_db.inc
+
+18-Apr-2008 Joe Hunt
+! Modules includes, inventory and manufacturing sealed against XSS attacks
$ /includes/db/comments_db.inc
/includes/db/inventory_db.inc
/includes/db/references_db.inc
/manufacturing/includes/db/work_order_issues_db.inc
/manufacturing/includes/db/work_order_produce_items_db.inc
-18-Apr-2008 Janusz Dobrwolski
+18-Apr-2008 Janusz Dobrowolski
! Changed db_escape function to avoid XSS attacks via js db injection
$ /includes/db/connect_db.inc
# Database inserts/updates secured against js injection
projects / fa-stable.git / blobdiff