[Python-Dev] Security issue with the tracker

Éric Araujo eric at netwok.org
Fri Apr 13 20:53:51 CEST 2012

bugs.python.org already sanitizes the ok_message and Ezio already posted 
a patch to the upstream bug tracker, so I don’t see what else we could do.

Also note that the Firefox extension NoScript blocks the XSS in this case.


More information about the Python-Dev mailing list