I recently ran a test on my storage system (pts/disk), and uploaded the result to openbenchmarking.org (fantastic site, btw).
I did have an ampersand in my description, though, and it seems the input wasn't sufficiently sanitized. See the error on this page: http://openbenchmarking.org/result/1...JEFF-CPDISKI26
This might be a larger issue, if this upload process does in fact allow for stored XSS attacks. As a much smaller issue, I'd really like to see my results without comparing to another system (which renders, as comparisons don't show the test description).
Thanks!
I did have an ampersand in my description, though, and it seems the input wasn't sufficiently sanitized. See the error on this page: http://openbenchmarking.org/result/1...JEFF-CPDISKI26
This might be a larger issue, if this upload process does in fact allow for stored XSS attacks. As a much smaller issue, I'd really like to see my results without comparing to another system (which renders, as comparisons don't show the test description).
Thanks!