peregrine

MVP

peregrine MVP

Thank you, Bleistivt and Vrijvlinder for letting me transfer ownership of my plugins to you both, You are the only two people I have given permission. over and out of here

Reactions

88 Promote 3.1K Insightful 1 Like 4.1K Awesome 1.3K LOL 0 Spam 2 Abuse

Re: Security risk in this plugin? Has this been tested?

peregrine

October 2014

perhaps line 27 above should be <?php $Answer->title = Gdn_Format::Text(($Answer->title);?>maybe the title on this thread could also be changed to Security Risk in Poll Plugin not sure if… (View Post)

1
Re: kPoll css missing? (NOTE k-poll contains a potential security risk.)

peregrine

October 2014

hey @linc - Can you put a note in the description -xSS Security Issue in the kpoll plugin, so people can download and try to fix, and still Alert unknowing users not to use at the same time. ironic i… (View Post)

1
Re: kPoll css missing? (NOTE k-poll contains a potential security risk.)

peregrine

October 2014

you could do something like this everywhere, unless someone has a better idea. echo <<<EOT <strong>* $pollInfo->pollTitle </strong> <form id="poll" action=".… (View Post)

2
Re: kPoll css missing? (NOTE k-poll contains a potential security risk.)

peregrine

October 2014

actually on second thought, I could reproduce the issue. put this in the title in the dashboard <script>alert('bad news')</script> then click view and you will see a popup. so for sure - … (View Post)

1
Re: Bootstrap embedded cutting off top 'New Discussion' button

peregrine

October 2014

try adding it to design/themes/vivashop/css/styles.css (View Post)

1

peregrine

peregrine MVP

Reactions

Re: Security risk in this plugin? Has this been tested?

Re: kPoll css missing? (NOTE k-poll contains a potential security risk.)

Re: kPoll css missing? (NOTE k-poll contains a potential security risk.)

Re: kPoll css missing? (NOTE k-poll contains a potential security risk.)

Re: Bootstrap embedded cutting off top 'New Discussion' button