News

Jahia.com

Extranet

Community

Forum

Demo

Jahia TV

Blogs

News

Back to news list

Security Fix available for Jahia v6

Date: 02/12/2009 14:00

A security fix is available on the customer extranet and must be applied on version 6 of Jahia to correct XSS vulnerability in public form fields. The fix consists of JSP's updates you can manually apply by using the following JSPs diffs available below :

<installation-context>/engines/login/login.jsp - Diffs
<installation-context>/admin/login.jsp - Diffs
<installation-context>/templates/web_templates/areas/joblist.jsp - Diffs

We strongly advise you to do the same on all other public forms you could have added in public pages.

Topics

Product Info

Jahia CE

Videocasts

Online Demo

Nightly Builds

Documentation: Have access to Manuals, Guides and How to?