Details
-
Bug
-
Status: New
-
Major
-
Resolution: Unresolved
-
1.8.2
-
None
-
None
-
Community Data Enclave
-
Firefox, Safari
Description
On the "Community Enclave Demo" site (https://www.dataenclave.net/webclientv2/), I've been using the "i2b2 Demo" project to learn more about the demo ontology. When the user interface opens in that project, I see a popup that just says "XSS". To me, that indicates "cross-site scripting," which is a security no-no. So it looks spooky.
I don't know what's causing that, or whether it actually indicates a security flaw, but a user could freak out when looking at that.
See attached images for context. I did not see this same behavior when loading the other four projects (that are available to username "demo") on that site, only the i2b2 Demo project.
Currently using Safari 18.4 and Firefox 138.0.1 on macOS 14.7.5 Sonoma.
I don't know what's causing that, or whether it actually indicates a security flaw, but a user could freak out when looking at that.
See attached images for context. I did not see this same behavior when loading the other four projects (that are available to username "demo") on that site, only the i2b2 Demo project.
Currently using Safari 18.4 and Firefox 138.0.1 on macOS 14.7.5 Sonoma.
