Skip to main content
Planview Customer Success Center

February/March 2022 Release Notes

Security

Following a further investigation into registration modes, we have discovered an issue whereby the username field could be used to insert HTML code which would generate an error and potentially redirect a user.

This has now been prevented. The standard fields present on the registration page: username, first name, last name, email address, password, and confirm password will no longer allow the entering of HTML which can act as an "injection" mechanism.