Skip to main content
summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorChris Austin2012-04-04 09:44:42 +0000
committerDani Megert2012-04-04 09:44:42 +0000
commit854b5aa9ac1959a748bf14ce345a461a5ea223b0 (patch)
tree59d48e49de906df5d750f5a856edc8133fc939a4
parentbded0bbb69f9a3dcb546d0f7e76296ebcfd7aa9c (diff)
downloadeclipse.platform.ua-854b5aa9ac1959a748bf14ce345a461a5ea223b0.tar.gz
eclipse.platform.ua-854b5aa9ac1959a748bf14ce345a461a5ea223b0.tar.xz
eclipse.platform.ua-854b5aa9ac1959a748bf14ce345a461a5ea223b0.zip
Fixed bug 375751: [Help] Security vulnerabilities in deferredView.jspv20120404-0944N20120417-1633N20120417-1307N20120416-1918I20120502-2000I20120502-1800I20120502-1500I20120502-1300I20120502-1000I20120502-0800I20120430-2000I20120430-1800I20120430-1500I20120430-1300I20120429-2000I20120429-1800I20120429-1245I20120429-1000I20120428-1230I20120428-0800I20120428-0140I20120427-1000I20120427-0800I20120426-1030I20120426-1000I20120426-0800I20120425-1600I20120425-1200I20120425-0800I20120424-1700I20120424-1600I20120424-0800I20120419-1434I20120418-0248I20120417-1000I20120417-0800I20120417-0334I20120417-0255I20120417-0235I20120417-0211I20120417-0142I20120416-2327I20120416-1738I20120416-1719I20120416-1643I20120416-1623I20120416-1600I20120416-1508I20120411-2034I20120411-1737I20120411-0906I20120411-0258I20120410-2330I20120410-2037I20120410-1710I20120410-0633I20120410-0320I20120410-0304I20120410-0252I20120410-0238I20120410-0216I20120410-0152I20120410-0136I20120410-0122I20120410-0102I20120410-0049I20120410-0027I20120409-2358I20120409-2119I20120409-2018I20120409-1957I20120409-1911I20120409-1708I20120409-1622I20120409-1353I20120409-0926I20120409-0904I20120409-0315I20120409-0131I20120408-2304I20120408-2000I20120408-1521I20120408-1324I20120408-1214I20120408-1110I20120408-0330I20120408-0246I20120408-0231I20120408-0216I20120408-0152I20120408-0036I20120408-0012I20120407-2339I20120407-2245I20120407-2106I20120407-1941I20120407-1904I20120407-1840I20120407-1826I20120407-1732I20120407-1717I20120407-1631I20120407-0358I20120407-0346I20120407-0329I20120407-0305I20120407-0217I20120407-0205I20120407-0138I20120407-0103I20120407-0040I20120407-0024I20120406-2327I20120406-0935I20120406-0915I20120406-0250I20120406-0231I20120406-0006I20120405-2131I20120405-1735I20120405-1114I20120405-0114I20120404-2228I20120404-2006I20120404-1351
-rw-r--r--org.eclipse.help.webapp/advanced/deferredView.jsp9
1 files changed, 7 insertions, 2 deletions
diff --git a/org.eclipse.help.webapp/advanced/deferredView.jsp b/org.eclipse.help.webapp/advanced/deferredView.jsp
index 6a7a1e0f0..f30777c72 100644
--- a/org.eclipse.help.webapp/advanced/deferredView.jsp
+++ b/org.eclipse.help.webapp/advanced/deferredView.jsp
@@ -1,5 +1,5 @@
<%--
- Copyright (c) 2006, 2010 IBM Corporation and others.
+ Copyright (c) 2006, 2012 IBM Corporation and others.
All rights reserved. This program and the accompanying materials
are made available under the terms of the Eclipse Public License v1.0
which accompanies this distribution, and is available at
@@ -13,6 +13,11 @@
<%
RequestData data = new RequestData(application, request, response);
WebappPreferences prefs = data.getPrefs();
+
+ String baseURL = request.getRequestURL().toString();
+ baseURL = baseURL.substring(0,baseURL.lastIndexOf("/")+1);
+
+ String href = baseURL+request.getParameter("href");
%>
<html lang="<%=ServletResources.getString("locale", request)%>">
@@ -22,7 +27,7 @@
<script language="JavaScript">
function onloadHandler() {
- location.href="<%=UrlUtil.JavaScriptEncode(request.getParameter("href"))%>";
+ location.href="<%=UrlUtil.JavaScriptEncode(href)%>";
}
</script>

Back to the top