Agree on need to fix. Don't really see how to exploit that since you reap what you seed... and XSS-like scenarios sound very far-fetched.
Adding Rob Clark from OSSG to see if he sees a blatant way of exploiting this that I'd have missed.
Agree on need to fix. Don't really see how to exploit that since you reap what you seed... and XSS-like scenarios sound very far-fetched.
Adding Rob Clark from OSSG to see if he sees a blatant way of exploiting this that I'd have missed.