We're updating the issue view to help you get more done. 

CVE-2014-4172 URL Encode Parameters Passed to Validate Endpoints

Description

Currently the application will pass along whatever comes in from parameters like ticket, service, etc. They should be encoded.

Environment

None

Status

Assignee

ScottS

Reporter

ScottS

Labels

None

Estimated End Date

None

Audience

None

Components

Fix versions

Affects versions

3.3.1

Priority

Blocker