Enano CMS (1.1.x): includes/clientside/tinymce/plugins/paste/css/blank.css@a9a3789ce02d

Mercurial Mercurial > repos > enano-1.1 / file revision

includes/clientside/tinymce/plugins/paste/css/blank.css

author	Dan
	Sat, 19 Jan 2008 00:47:52 -0500
changeset 447	a9a3789ce02d
parent 1	fe660c52c48f
child 335	67bd3121a12e
permissions	-rw-r--r--

Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.


body {
	background-color: #FFFFFF;
	font-family: Verdana, Arial, Helvetica, sans-serif;
	font-size: 10px;
	scrollbar-3dlight-color: #F0F0EE;
	scrollbar-arrow-color: #676662;
	scrollbar-base-color: #F0F0EE;
	scrollbar-darkshadow-color: #DDDDDD;
	scrollbar-face-color: #E0E0DD;
	scrollbar-highlight-color: #F0F0EE;
	scrollbar-shadow-color: #F0F0EE;
	scrollbar-track-color: #F5F5F5;
}

Enano CMS (1.1.x)

RSS Atom